Lucene search
K

156 matches found

CNNVD
CNNVD
added 2025/05/17 12:0 a.m.4 views

SourceCodester Doctors Appointment System 注入漏洞

SourceCodester Doctors Appointment System is SourceCodester open source a doctor appointment system. An injection vulnerability exists in SourceCodester Doctors Appointment System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file...

9.8CVSS7.7AI score0.00421EPSS
Exploits1References7
OSV
OSV
added 2025/02/28 8:15 a.m.4 views

CVE-2025-1572

The KiviCare – Clinic & Patient Management System EHR plugin for WordPress is vulnerable to SQL Injection via the ‘uid’ parameter in all versions up to, and including, 3.6.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...

8.8CVSS5.9AI score0.00486EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/02/28 12:0 a.m.5 views

PT-2025-9066 · WordPress · Kivicare – Clinic & Patient Management System (Ehr) Plugin

Name of the Vulnerable Software and Affected Versions: KiviCare – Clinic & Patient Management System EHR plugin for WordPress versions up to, and including, 3.6.7 Description: The issue is related to SQL Injection via the u id parameter due to insufficient escaping on the user-supplied parameter...

8.8CVSS9.5AI score0.00486EPSS
Exploits0References12
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.3 views

Code-Projects Hospital Management System 安全漏洞

Hospital Management System a hospital management system. Hospital Management System has a cross-site scripting vulnerability that originates from a cross-site scripting vulnerability in the Doctor Name parameter of the /hospital/hms/admin/manage-doctors.php file. An attacker can exploit this...

5.2CVSS6AI score0.00524EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.7 views

PT-2024-17846 · Unknown · Code-Projects Hospital Management System

Name of the Vulnerable Software and Affected Versions: code-projects Hospital Management System version 1.0 Description: A vulnerability has been found in the code-projects Hospital Management System. This issue affects an unknown part of the file /hospital/hms/admin/manage-doctors.php of the...

5.2CVSS4AI score0.00524EPSS
Exploits1References10
Openbugbounty
Openbugbounty
added 2024/04/05 6:35 a.m.4 views

pipe-doctors.com Cross Site Scripting vulnerability OBB-3904138

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2023/12/18 12:0 p.m.17 views

Scammers Are Tricking Anti-Vaxxers Into Buying Bogus Medical Documents

On Telegram, scammers are impersonating doctors to sell fake Covid-19 vaccination certificates and other products, showing how criminals are taking advantage of conspiracy theories...

7.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/04 2:58 a.m.10 views

thedoctorsdialogue.com Cross Site Scripting vulnerability OBB-3773014

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/10/24 12:0 a.m.6 views

Vulnerability of the /vm/admin/doctors.php file of the small medical institutions’ management system. SourceCodester – Free Hospital Management System for Small Practices, allowing attackers to execute arbitrary SQL queries against the database.

The vulnerability of the /vm/admin/doctors.php file in the Small Medical Institutions Management System by SourceCodester allows unauthorized access to the SQL query structure. Exploiting this vulnerability enables a malicious actor to execute arbitrary SQL queries against the database remotely...

6.5CVSS7.2AI score0.00657EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2023/10/15 12:0 a.m.3 views

Hospital Management System SQL注入漏洞

The Free Hospital Management System is a computerized system that helps manage healthcare-related information and helps healthcare providers do their jobs efficiently. The Free Hospital Management System suffers from a SQL injection vulnerability that originates from a lack of validation of the...

9.8CVSS8AI score0.00657EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/10/13 12:0 a.m.6 views

PT-2023-6327 · Sourcecodester · Sourcecodester Free Hospital Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Free Hospital Management System for Small Practices version 1.0 Description: A critical issue was found in the file /vm/admin/doctors.php of the component Parameter Handler, related to the lack of protection of the SQL query...

9.8CVSS7.1AI score0.00657EPSS
Exploits1References8
HackRead
HackRead
added 2023/10/04 10:32 a.m.29 views

AI in Healthcare: ChatGPT Helps Boy Get Diagnosis After Doctors Fail

By Waqas Artificial intelligence has the potential to revolutionize healthcare, and it is already making remarkable strides. This is a post from HackRead.com Read the original post: AI in Healthcare: ChatGPT Helps Boy Get Diagnosis After Doctors Fail...

6.9AI score
Exploits0
OSV
OSV
added 2023/09/11 8:15 p.m.4 views

CVE-2023-40945

Sourcecodester Doctor Appointment System 1.0 is vulnerable to SQL Injection in the variable $userid at doctors\myDetails.php...

9.8CVSS5.8AI score0.00749EPSS
Exploits1References1
NVD
NVD
added 2023/08/08 1:15 p.m.26 views

CVE-2023-4219

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument useremail leads to sql injection. The attack can be launched remotely. T...

7.5CVSS7.6AI score0.00669EPSS
Exploits1References3
OSV
OSV
added 2023/08/08 1:15 p.m.4 views

CVE-2023-4219

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument useremail leads to sql injection. The attack can be launched remotely. T...

7.5CVSS5.7AI score0.00669EPSS
Exploits1References3
Prion
Prion
added 2023/08/08 1:15 p.m.28 views

Sql injection

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument useremail leads to sql injection. The attack can be launched remotely. T...

7.5CVSS7.9AI score0.00669EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/08/08 1:0 p.m.31 views

CVE-2023-4219 SourceCodester Doctors Appointment System login.php sql injection

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument useremail leads to sql injection. The attack can be launched remotely. T...

7.5CVSS8.1AI score0.00669EPSS
Exploits1References3
CVE
CVE
added 2023/08/08 1:0 p.m.137 views

CVE-2023-4219

CVE-2023-4219 concerns SourceCodester Doctors Appointment System v1.0 with a SQL injection in login.php via the useremail parameter. The vulnerability can be triggered remotely and is described as high severity; exploitation status is not confirmed within the provided sources, though public discl...

7.5CVSS7.7AI score0.00669EPSS
Exploits1References3Affected Software1
Wired Threat Level
Wired Threat Level
added 2023/08/08 12:0 p.m.23 views

What Doctors Wish You Knew About HIPAA and Data Security

Think US health data is automatically kept private? Think again...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/08/08 12:0 a.m.4 views

PT-2023-28291 · Sourcecodester · Sourcecodester Doctors Appointment System

Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical issue has been found in the system, affecting an unknown functionality of the file login.php. The manipulation of the useremail argument leads to sql injection. Thi...

7.5CVSS7.6AI score0.00669EPSS
Exploits1References6
Rows per page
Query Builder