CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-19742

Malware in sbrugna...

8.8CVSS6.9AI score0.00325EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 3:24 p.m.•7 views

CVE-2020-27230

A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findSector parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection An attacker can make an authenticated HTTP request to trigger this...

8.8CVSS7.8AI score0.00325EPSS

Exploits1

CNVD•added 2021/05/12 12:0 a.m.•4 views

OpenClinic GA SQL Injection Vulnerability (CNVD-2021-34991)

OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. An SQL injection vulnerability exists in the findPersonID parameter of the "Patientslist.do" page in OpenClinic GA...

8.8CVSS7.4AI score0.00325EPSS

Exploits1References1

OSV•added 2021/05/10 7:15 p.m.•0 views

CVE-2020-27229

A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findPersonID parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this...

8.8CVSS6.8AI score

Exploits0References1

OSV•added 2021/05/10 7:15 p.m.•0 views

CVE-2020-27231

A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findDistrict parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this...

8.8CVSS6.8AI score

Exploits0References1

Prion•added 2021/05/10 7:15 p.m.•11 views

Sql injection

6.5CVSS9.2AI score0.00325EPSS

Exploits1References1Affected Software1

Prion•added 2021/05/10 7:15 p.m.•6 views

Sql injection

6.5CVSS9.1AI score0.00325EPSS

Exploits1References1Affected Software1

Prion•added 2021/05/10 7:15 p.m.•11 views

Sql injection

6.5CVSS9.2AI score0.0036EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/05/10 6:36 p.m.•12 views

CVE-2020-27231

6.4CVSS9.3AI score0.0036EPSS

Exploits1References1

CVE•added 2021/05/10 6:36 p.m.•44 views

CVE-2020-27231

CVE-2020-27231 affects OpenClinic GA 5.173.3. The connected TALOS advisory documents multiple authenticated SQL injection vulnerabilities in the patientslist.do page, notably via the findDistrict, findPersonID, and findSector parameters, leading to possible data exposure or manipulation. The CVE ...

8.8CVSS9.2AI score0.0036EPSS

Exploits1References1Affected Software1

CVE•added 2021/05/10 6:36 p.m.•40 views

CVE-2020-27230

OpenClinic GA 5.173.3 contains multiple authenticated SQL injection vulnerabilities in patientslist.do, notably via the findSector, findDistrict, and related parameters (e.g., findPersonID). TALOS details show the vulnerability arises from string-concatenated SQL construction in getAllPatients, w...

8.8CVSS9AI score0.00325EPSS

Exploits1References1Affected Software1

CVE•added 2021/05/10 6:36 p.m.•46 views

CVE-2020-27229

CVE-2020-27229 concerns OpenClinic GA 5.173.3, where multiple authenticated SQL injection vulnerabilities exist in the web page patientslist.do . The root cause is improper handling of user input in the findPersonID, findSector, and findDistrict parameters, leading to crafted HTTP requests that c...

8.8CVSS9.2AI score0.00325EPSS

Exploits1References1Affected Software1

CNNVD•added 2021/04/13 12:0 a.m.•1 views

OpenClinic GA SQL注入漏洞

8.8CVSS5.9AI score0.00325EPSS

Exploits1References3

CNNVD•added 2021/04/13 12:0 a.m.•1 views

OpenClinic GA SQL注入漏洞

OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. An SQL injection vulnerability exists in the findDistrict parameter of the "Patientslist.do" page in OpenClinic GA...

8.8CVSS5.9AI score0.0036EPSS

Exploits1References3

Talos•added 2021/04/13 12:0 a.m.•241 views

OpenClinic GA web portal multiple SQL injection vulnerabilities in 'patientslist.do' page

Summary A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. Tested Versions...

8.8CVSS8.1AI score0.0036EPSS

Exploits3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by