Lucene search
K

235 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/01 12:45 a.m.16 views

CVE-2026-10209

A vulnerability has been found in code-projects Online Hospital Management System 1.0. Affected is an unknown function of the file appointmentdetail.php of the component Appointment Handler. The manipulation of the argument editid leads to sql injection. The attack is possible to be carried out...

6.5CVSS6.4AI score0.002EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.15 views

PT-2026-45241

A vulnerability has been found in code-projects Online Hospital Management System 1.0. Affected is an unknown function of the file appointmentdetail.php of the component Appointment Handler. The manipulation of the argument editid leads to sql injection. The attack is possible to be carried out...

6.5CVSS6.4AI score0.002EPSS
Exploits0References7
NVD
NVD
added 2026/05/31 2:16 p.m.15 views

CVE-2026-10186

A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /patient.php. Such manipulation of the argument editid leads to sql injection. The attack can be executed remotely. The exploit...

7.5CVSS0.00269EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/05/31 2:0 p.m.36 views

CVE-2026-10186 code-projects Online Hospital Management System patient.php sql injection

A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /patient.php. Such manipulation of the argument editid leads to sql injection. The attack can be executed remotely. The exploit...

7.5CVSS0.00269EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/31 2:0 p.m.14 views

CVE-2026-10186

A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /patient.php. Such manipulation of the argument editid leads to sql injection. The attack can be executed remotely. The exploit...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/05/31 2:0 p.m.21 views

CVE-2026-10186

Code-projects Online Hospital Management System 1.0 contains an SQL injection vulnerability in the /patient.php endpoint, triggered by manipulating the editid parameter. The flaw allows remote exploitation and has publicly disclosed exploit details. Multiple CVSS metrics across versions (e.g., CV...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.10 views

Code-Projects Online Hospital Management System SQL注入漏洞

Code-Projects Online Hospital Management System is an open-source online hospital management system developed by Code-Projects. Version 1.0 of the code-projects Online Hospital Management System has a SQL injection vulnerability. This vulnerability arises from an unknown function parameter in the...

7.5CVSS7.2AI score0.00269EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/31 12:0 a.m.13 views

PT-2026-45197

A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /patient.php. Such manipulation of the argument editid leads to sql injection. The attack can be executed remotely. The exploit...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/01/09 12:33 p.m.8 views

CVE-2023-31937

Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-cateogry-detail.php file...

7.2CVSS8.1AI score0.0093EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:56 a.m.14 views

CVE-2022-38265

Apartment Visitor Management System v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter at /avms/edit-apartment.php...

7.2CVSS8.3AI score0.00734EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/27 12:5 a.m.7 views

CVE-2025-66947

SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-detail.php via the editid GET parameter. An attacker can trigger controlled delays using SQL SLEEP to infer database contents. Successful exploitation may lead to full database compromise, especially...

6.5CVSS8AI score0.00259EPSS
Exploits2References1
OSV
OSV
added 2025/12/26 3:15 p.m.5 views

CVE-2025-66947

SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-detail.php via the editid GET parameter. An attacker can trigger controlled delays using SQL SLEEP to infer database contents. Successful exploitation may lead to full database compromise, especially...

6.5CVSS5.9AI score0.00259EPSS
Exploits2References1
NVD
NVD
added 2025/12/26 3:15 p.m.4 views

CVE-2025-66947

SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-detail.php via the editid GET parameter. An attacker can trigger controlled delays using SQL SLEEP to infer database contents. Successful exploitation may lead to full database compromise, especially...

6.5CVSS0.00259EPSS
Exploits2References1
EUVD
EUVD
added 2025/12/26 12:0 a.m.10 views

EUVD-2025-205435

SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-detail.php via the editid GET parameter. An attacker can trigger controlled delays using SQL SLEEP to infer database contents. Successful exploitation may lead to full database compromise, especially...

6.5CVSS7.5AI score0.00259EPSS
Exploits2References2
Cvelist
Cvelist
added 2025/12/26 12:0 a.m.22 views

CVE-2025-66947

SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-detail.php via the editid GET parameter. An attacker can trigger controlled delays using SQL SLEEP to infer database contents. Successful exploitation may lead to full database compromise, especially...

0.00259EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2025/12/26 12:0 a.m.5 views

PT-2025-53593

Name of the Vulnerable Software and Affected Versions krishanmuraiji SMS version 1.0 Description A SQL injection issue exists in krishanmuraiji SMS version 1.0. The issue is located within the '/studentms/admin/edit-class-detail.php' file and is triggered through the editid GET parameter. An...

6.5CVSS7.5AI score0.00259EPSS
Exploits2References6
Vulnrichment
Vulnrichment
added 2025/12/26 12:0 a.m.4 views

CVE-2025-66947

SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-detail.php via the editid GET parameter. An attacker can trigger controlled delays using SQL SLEEP to infer database contents. Successful exploitation may lead to full database compromise, especially...

7.6AI score0.00259EPSS
Exploits2References1
CVE
CVE
added 2025/12/26 12:0 a.m.12 views

CVE-2025-66947

CVE-2025-66947 affects krishanmuraiji SMS v1.0. The flaw is a time-based SQL injection in /studentms/admin/edit-class-detail.php via the editid GET parameter, where unvalidated input can trigger SQL SLEEP() delays to infer database contents. Exploitation could lead to full database disclosure or ...

6.5CVSS7.6AI score0.00259EPSS
Exploits2References1Affected Software1
GithubExploit
GithubExploit
added 2025/12/13 4:50 a.m.168 views

Exploit for CVE-2025-66947

CVE-2025-66947 SQL Injection in krishanmuraiji SMS v1.0 CVE-2...

8.5AI score0.00259EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/10/12 9:16 p.m.12 views

CVE-2025-11614

A vulnerability was identified in SourceCodester Best Salon Management System 1.0. Affected by this issue is some unknown functionality of the file /panel/edit-appointment.php. Such manipulation of the argument editid leads to sql injection. The attack may be launched remotely. The exploit is...

9.8CVSS7.2AI score0.00383EPSS
Exploits1References1
Rows per page
Query Builder