Lucene search
K

24 matches found

CNVD
CNVD
added 2025/12/25 12:0 a.m.2 views

Online Appointment Booking System clinic parameter SQL injection vulnerability

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter clinic in the file...

9.8CVSS8.3AI score0.00306EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/20 4:17 a.m.10 views

CVE-2025-14939

A vulnerability was found in code-projects Online Appointment Booking System 1.0. Impacted is an unknown function of the file /admin/deletemanager.php. The manipulation of the argument managername results in sql injection. The attack may be performed from remote. The exploit has been made public...

7.2CVSS6.7AI score0.00275EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/19 6:30 a.m.5 views

EUVD-2025-204440

A vulnerability was found in code-projects Online Appointment Booking System 1.0. Impacted is an unknown function of the file /admin/deletemanager.php. The manipulation of the argument managername results in sql injection. The attack may be performed from remote. The exploit has been made public...

5.8CVSS6.3AI score0.00275EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/12/18 10:37 p.m.4 views

CVE-2025-14833

A security flaw has been discovered in code-projects Online Appointment Booking System 1.0. The impacted element is an unknown function of the file /admin/deletemanagerclinic.php. Performing manipulation of the argument clinic results in sql injection. The attack can be initiated remotely. The...

9.8CVSS7AI score0.00306EPSS
Exploits0References1
CVE
CVE
added 2025/12/17 10:32 p.m.14 views

CVE-2025-14833

The CVE-2025-14833 entry concerns code-projects Online Appointment Booking System 1.0. A SQL injection vulnerability exists in the /admin/deletemanagerclinic.php file, originating from unsafely handling the clinic parameter. This flaw enables remote exploitation and has publicly available exploit...

9.8CVSS6.7AI score0.00306EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-53178

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.00377EPSS
Exploits0References1
CNVD
CNVD
added 2025/07/23 12:0 a.m.2 views

Online Appointment Booking System adddoctor.php File SQL Injection Vulnerability

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System has a SQL injection vulnerability that originates from improper handling of the parameter Username in the file /admin/adddoctor.php, which can be exploited by an attacker to obtain sensiti...

9.8CVSS7.9AI score0.00396EPSS
Exploits2References1
CNVD
CNVD
added 2025/07/23 12:0 a.m.4 views

Online Appointment Booking System getmanagerregion.php File SQL Injection Vulnerability

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System has a SQL injection vulnerability that originates from improper handling of the parameter city in the file /admin/getmanagerregion.php, which can be exploited by an attacker to obtain...

9.8CVSS7.9AI score0.00448EPSS
Exploits1References1
CNVD
CNVD
added 2025/07/18 12:0 a.m.3 views

Online Appointment Booking System ulocateus.php File SQL Injection Vulnerability

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that stems from an error in the parameter doctorname in the file /ulocateus.php that lacks validation of externally entered SQL statements. An...

9.8CVSS8.2AI score0.00394EPSS
Exploits1References1
CNVD
CNVD
added 2025/07/18 12:0 a.m.3 views

Online Appointment Booking System getDay.php File SQL Injection Vulnerability

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that stems from an error in the parameter cidval in the file /getDay.php that lacks validation of externally entered SQL statements. The...

9.8CVSS8.3AI score0.00394EPSS
Exploits1References1
OSV
OSV
added 2025/07/17 8:15 p.m.7 views

CVE-2025-7751

A vulnerability has been found in code-projects Online Appointment Booking System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/addclinic.php. The manipulation of the argument cid leads to sql injection. The attack can be launched...

9.8CVSS5.8AI score0.00396EPSS
Exploits1References5
OSV
OSV
added 2025/07/17 8:15 p.m.2 views

CVE-2025-7752

A vulnerability was found in code-projects Online Appointment Booking System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/deletedoctor.php. The manipulation of the argument did leads to sql injection. The attack may be launched remotely...

9.8CVSS5.8AI score0.00396EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/17 12:0 a.m.4 views

Code-Projects Online Appointment Booking System 注入漏洞

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter clinic in the file /admin/addmanagerclinic.php...

9.8CVSS8.2AI score0.00394EPSS
Exploits1References5
OSV
OSV
added 2025/07/13 5:15 a.m.4 views

CVE-2025-7517

A vulnerability, which was classified as critical, has been found in code-projects Online Appointment Booking System 1.0. This issue affects some unknown processing of the file /getDay.php. The manipulation of the argument cidval leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS5.8AI score0.00394EPSS
Exploits1References5
OSV
OSV
added 2025/07/13 4:15 a.m.5 views

CVE-2025-7515

A vulnerability classified as critical has been found in code-projects Online Appointment Booking System 1.0. This affects an unknown part of the file /ulocateus.php. The manipulation of the argument doctorname leads to sql injection. It is possible to initiate the attack remotely. The exploit ha...

9.8CVSS5.8AI score0.00394EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/13 12:0 a.m.4 views

Code-Projects Online Appointment Booking System 安全漏洞

Online Appointment Booking System is an online appointment booking system. The Online Appointment Booking System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter townid in the file /getclinic.php. The...

9.8CVSS7.9AI score0.00399EPSS
Exploits1References2
OSV
OSV
added 2025/04/03 11:15 p.m.5 views

CVE-2025-3184

A vulnerability was found in projectworlds Online Doctor Appointment Booking System 1.0 and classified as critical. This issue affects some unknown processing of the file /patient/profile.php?patientId=1. The manipulation of the argument patientFirstName leads to sql injection. The attack may be...

9.8CVSS5.8AI score0.00551EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2024/08/29 12:0 a.m.172 views

Online Appointment System 1.0 Insecure Settings

==================================================================================================================================== | Title : Online Appointment System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/04/10 12:0 a.m.240 views

Online Appointment System 1.0 Cross Site Scripting

Exploit Title: Online Appointment System V1.0 - Cross-Site Scripting XSS Date: 25/02/2023 Exploit Author: Sanjay Singh Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14502/online-appointment-system-php-full-source-code-2020.html Tested on: Window...

6.8AI score
Exploits0
0day.today
0day.today
added 2023/04/08 12:0 a.m.154 views

Online Appointment System V1.0 - Cross-Site Scripting Vulnerability

Exploit Title: Online Appointment System V1.0 - Cross-Site Scripting XSS Date: 25/02/2023 Exploit Author: Sanjay Singh Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14502/online-appointment-system-php-full-source-code-2020.html Tested on: Window...

6.8AI score
Exploits0
Rows per page
Query Builder