CVE-2026-6602 rickxy Hospital Management System his_admin_account.php unrestricted upload

A vulnerability was found in rickxy Hospital Management System up to 88a4290d957dc5bdde8a56e5ad451ad14f7f90f4. Affected is an unknown function of the file /backend/admin/hisadminaccount.php. The manipulation of the argument addpic results in unrestricted upload. The attack can be executed remotel...

CVE-2026-6602

CVE-2026-6602 affects the rickxy Hospital Management System (up to commit 88a4290d957dc5bdde8a56e5ad451ad14f7f90f4). The vulnerability is in an unknown function of /backend/admin/his_admin_account.php, where manipulation of the ad_dpic argument enables unrestricted file upload remotely. The publi...

CVE-2021-33388

dpic 2021.04.10 has a Heap Buffer Overflow in themakevar function in dpic.y...

EUVD-2021-20094

Malware in sbrugna...

EUVD-2021-20096

Malware in sbrugna...

EUVD-2021-19276

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-13989

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c. CVE-2019-13989 Note that Nessus relies on the presence of the package as...

CVE-2021-32421

dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox function in dpic.y...

CVE-2021-33390

dpic 2021.04.10 has a use-after-free in thedeletestringbox function in dpic.y. A different vulnerablility than CVE-2021-32421...

CVE-2021-32420

dpic 2021.01.01 has a Heap-based Buffer Overflow in thestorestring function in dpic.y...

CVE-2021-32422

dpic 2021.01.01 has a Global buffer overflow in theyylex function in main.c and reads out of the bound array...

CVE-2019-13989

dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...

CodeAstro Hospital Management System 安全漏洞

CodeAstro Hospital Management System is a hospital management system from CodeAstro, Inc. A security vulnerability exists in CodeAstro Hospital Management System version 1.0, which originates from an unrestricted file upload issue contained in the docdpic parameter of the...

OPENSUSE-SU-2024:13194-1 dpic-2023.02.01-2.1 on GA media

These are all security issues fixed in the dpic-2023.02.01-2.1 package on the GA media of openSUSE Tumbleweed...

Denial Of Service (DoS)

dpic is vulnerable to Denial Of Service DoS. The vulnerability exists due to the heap-based buffer overflow in the thestorestring function of dpic.y., which allows an attacker to cause an application crash...

Use After Free

Dpic is vulnerable to Use After Free. This vulnerability exists in the 'thedeletestringbox' function of 'dpic.y' due to the lack of validation of user inputs, which allows an attacker to exploit it through the use of maliciously crafted input...

Heap Buffer Overflow

dpic is vulnerable to Heap Buffer Overflow. The vulnerability exists in the themakevar function of dpic.y, which allows an attacker to cause an application crash by providing a maliciously crafted input...

SUSE CVE-2021-32420

dpic 2021.01.01 has a Heap-based Buffer Overflow in thestorestring function in dpic.y...

SUSE CVE-2021-32422

dpic 2021.01.01 has a Global buffer overflow in theyylex function in main.c and reads out of the bound array...

SUSE CVE-2021-32421

dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox function in dpic.y...