16 matches found
CVE-2025-6452
A vulnerability was found in CodeAstro Patient Record Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the component Generate New Report Page. The manipulation of the argument Patient Name/Name leads to cross site scripting. The attack may be...
CVE-2025-32794 OpenEMR Stored XSS via Patient Name Field in Procedure Orders
OpenEMR is a free and open source electronic health records and medical practice management application. A stored cross-site scripting XSS vulnerability in versions prior to 7.0.3.4 allows any authenticated user with patient creation privileges to inject arbitrary JavaScript code into the system ...
CVE-2024-46237
PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting XSS via the patname, pataddress, and medhis parameters in doctor/add-patient.php and doctor/edit-patient.php...
CVE-2024-46237
PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting XSS via the patname, pataddress, and medhis parameters in doctor/add-patient.php and doctor/edit-patient.php...
CVE-2023-51637
Sante PACS Server PG Patient Query SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante PACS Server PG. Authentication is not required to exploit this vulnerability. The specific flaw exists with...
Santesoft Sante PACS Server 安全漏洞
Santesoft Sante PACS Server is a DICOM 3.0 compliant PACS server, Modality Worklist server, HTTP Web server for DICOM files, and CD/DVD burning and printing server from Santesoft Cyprus. Used to store, archive, manage, view and burn medical images. A security vulnerability exists in Santesoft San...
Emergency Ambulance Hiring Portal Hire an Ambulance page component cross-site scripting vulnerability
Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a cross-site scripting vulnerability that stems from a lack of effective filtering and escaping of user-supplied data in the Hire an Ambulance page component parameter Patient...
PT-2023-9148 · Unknown · Sante Pacs Server
Name of the Vulnerable Software and Affected Versions: Sante PACS Server PG affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Sante PACS Server PG. Authentication is not required to exploit this issue. The specif...
CVE-2023-6297
A vulnerability classified as problematic has been found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file patient-search-report.php of the component Search Report Page. The manipulation of the argument Search By Patient Name with the input...
CVE-2023-6297
PHPGurukul Nipah Virus Testing Management System 1.0 is affected in the Search Report Page component (patient-search-report.php). A cross-site scripting vulnerability arises from manipulating the Search By Patient Name parameter with malicious input, e.g. , which can be triggered remotely. Multip...
CVE-2023-6297 PHPGurukul Nipah Virus Testing Management System Search Report Page patient-search-report.php cross site scripting
A vulnerability classified as problematic has been found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file patient-search-report.php of the component Search Report Page. The manipulation of the argument Search By Patient Name with the input...
Nipah virus Testing Management System Cross-Site Scripting Vulnerability
Nipah Virus Testing Management System is an online virus diagnostic platform. A cross-site scripting vulnerability exists in version 1.0 of the Nipah Virus Testing Management System due to an unknown part of the file Patient-search-report.php in the component Search Report Page, which can be...
PT-2023-32597 · Unknown · Phpgurukul Nipah Virus Testing Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Nipah Virus Testing Management System version 1.0 Description: A problematic vulnerability has been found in the Search Report Page component, specifically in the file patient-search-report.php. The issue arises from the manipulati...
CVE-2020-36011
A cross-site scripting XSS issue in Add Patient Form in QDOCS Smart Hospital Management System 3.1 allows a remote attacker to inject arbitrary code via the Name, Guardian Name, Email, Address, Remarks, or Any Known Allergies field...
Rimet Wifi Smart Temperature Control Android APP has an override access vulnerability
Rimet Wifi Smart Temperature Control Android APP is a management platform for smart hardware devices. Rimet Wifi Intelligent Temperature Control Android APP has an override access vulnerability. After logging into the client, the attacker can obtain sensitive information such as patient's name,...
Guizhou Provincial People's Hospital's Android App Has Override Access Vulnerability
Guizhou Provincial People's Hospital APP is a medical app for local people in Guizhou, making it easier and faster for people to see a doctor. Download Guizhou Provincial People's Hospital APP to utilize ID cards, visiting cards and other identification to get all the information about the visit,...