Lucene search
+L

157 matches found

cve
cve
added 2023/02/27 11:8 a.m.58 views

CVE-2023-1056

CVE-2023-1056 affects SourceCodester Doctors Appointment System v1.0, specifically the vulnerable code path in /edoc/doctor/patient.php where manipulating the search12 parameter enables SQL injection. The issue is exploitable remotely and the exploit has been publicly disclosed. Multiple connecte...

8.8CVSS7.8AI score0.007EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2023/02/27 11:8 a.m.30 views

CVE-2023-1056 SourceCodester Doctors Appointment System patient.php sql injection

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edoc/doctor/patient.php. The manipulation of the argument search12 leads to sql injection. The attack can be launch...

6.5CVSS9.2AI score0.007EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2023/02/27 12:0 a.m.10 views

PT-2023-16730 · Sourcecodester · Sourcecodester Doctors Appointment System

Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical issue has been found in the Parameter Handler component of the /admin/patient.php file, where the manipulation of the search argument leads to sql injection. This...

8.8CVSS6.9AI score0.00728EPSS
Exploits1References6
ptsecurity
ptsecurity
added 2023/02/27 12:0 a.m.4 views

PT-2023-16726 · Sourcecodester · Sourcecodester Doctors Appointment System

Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical vulnerability was found in the SourceCodester Doctors Appointment System. This issue affects the file /admin/doctors.php of the component Parameter Handler. The...

8.8CVSS7.2AI score0.00759EPSS
Exploits1References10
cnnvd
cnnvd
added 2023/02/27 12:0 a.m.6 views

Doctors Appointment System SQL注入漏洞

Doctors Appointment System is a doctor appointment system from SourceCodester. An injection vulnerability exists in Doctors Appointment System version 1.0, which stems from a security issue with unknown code in the file /admin/doctors.php of the component Parameter Handler, which causes an sql...

8.8CVSS6.8AI score0.00759EPSS
Exploits1References6
ptsecurity
ptsecurity
added 2023/02/27 12:0 a.m.5 views

PT-2023-16723 · Sourcecodester · Sourcecodester Doctors Appointment System

Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical issue has been found in the system, affecting an unknown functionality of the file /edoc/doctor/patient.php. The manipulation of the search12 argument leads to SQL...

8.8CVSS7.2AI score0.007EPSS
Exploits1References6
ptsecurity
ptsecurity
added 2023/02/27 12:0 a.m.5 views

PT-2023-16729 · Sourcecodester · Sourcecodester Doctors Appointment System

Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical issue was found in the Parameter Handler component of the file /admin/add-new.php, where the manipulation of the email argument leads to sql injection. This issue c...

8.8CVSS7AI score0.007EPSS
Exploits1References6
cnnvd
cnnvd
added 2023/02/27 12:0 a.m.6 views

Doctors Appointment System SQL注入漏洞

Doctors Appointment System is a doctor appointment system from SourceCodester. An injection vulnerability exists in Doctors Appointment System version 1.0, which stems from unknown processing in the file /admin/edit-doc.php, resulting in an sql injection via the parameter oldmail...

8.8CVSS6.9AI score0.00759EPSS
Exploits1References6
cnnvd
cnnvd
added 2023/02/27 12:0 a.m.4 views

SourceCodester Doctors Appointment System SQL注入漏洞

SourceCodester Doctor Appointment System is an application from SourceCodester USA. It provides an appointment scheduling feature. A SQL injection vulnerability exists in the SourceCodester Doctors Appointment System version 1.0, which originates from a security issue with an unknown function in...

8.8CVSS6.5AI score0.00728EPSS
Exploits1References5
openbugbounty
openbugbounty
added 2022/10/22 3:1 p.m.14 views

charlottebioidenticalhormonedoctors.com Cross Site Scripting vulnerability OBB-3011906

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
osv
osv
added 2022/08/31 9:15 p.m.2 views

CVE-2022-36201

Doctor’s Appointment System v1.0 is vulnerable to Blind SQLi via settings.php...

9.8CVSS5.8AI score0.01793EPSS
Exploits3References3
cnnvd
cnnvd
added 2022/08/31 12:0 a.m.4 views

Doctor’s Appointment System 跨站脚本漏洞

Doctor's Appointment System is a doctor's appointment system by Hashen Udara, an individual developer. A security vulnerability exists in Doctor's Appointment System version 1.0, which stems from its admin panel allowing an attacker to steal a cookie to take over the administrator account...

6.1CVSS6.8AI score0.0077EPSS
Exploits3References5
nvd
nvd
added 2022/08/26 9:15 p.m.16 views

CVE-2022-36543

Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/doctors.php...

9.8CVSS0.00988EPSS
Exploits1References2
osv
osv
added 2022/08/26 9:15 p.m.6 views

CVE-2022-36543

Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/doctors.php...

9.8CVSS7.3AI score0.00988EPSS
Exploits1References2
cvelist
cvelist
added 2022/08/26 8:37 p.m.25 views

CVE-2022-36543

Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/doctors.php...

10AI score0.00988EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2022/08/26 12:0 a.m.8 views

PT-2022-23455

Name of the Vulnerable Software and Affected Versions Edoc-doctor-appointment-system version 1.0.1 Description The Edoc-doctor-appointment-system contains a SQL injection issue via the id parameter at the "/patient/doctors.php" API endpoint. Recommendations For Edoc-doctor-appointment-system...

9.8CVSS9.6AI score0.00988EPSS
Exploits1References5
openbugbounty
openbugbounty
added 2022/08/08 12:38 p.m.12 views

deltafamilydoctors.com.au Cross Site Scripting vulnerability OBB-2830780

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
openbugbounty
openbugbounty
added 2022/07/16 3:18 a.m.18 views

texaseyedoctors.com Cross Site Scripting vulnerability OBB-2779792

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
openbugbounty
openbugbounty
added 2022/07/07 2:47 p.m.13 views

footdoctorswatsonville.com Cross Site Scripting vulnerability OBB-2740111

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
osv
osv
added 2022/06/14 4:15 p.m.3 views

CVE-2022-32338

Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/doctors/managedoctor.php?id=...

7.2CVSS5.8AI score0.00909EPSS
Exploits1References1
Rows per page
Query Builder