11 matches found
CVE-2022-36242
Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/updatemedicine.php?id=...
CVE-2024-7752
A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /updatemedicine.php. The manipulation of the argument medicinename leads to cross site scripting. It is possible to initiate the attac...
CVE-2024-7751
A vulnerability was found in SourceCodester Clinics Patient Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /updatemedicine.php. The manipulation of the argument hiddenid leads to sql injection. The attack may be launched remotely...
SourceCodester Clinics Patient Management System SQL注入漏洞
SourceCodester Clinics Patient Management System is a clinic patient management system from SourceCodester, Inc. A SQL injection vulnerability exists in SourceCodester Clinics Patient Management System version 1.0, which stems from the parameter hiddenid in the file /updatemedicine.php that can...
PT-2024-38559 · Sourcecodester · Sourcecodester Clinics Patient Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Clinics Patient Management System version 1.0 Description: A critical issue was found in the system, affecting some unknown functionality of the file /update medicine.php. The manipulation of the hidden id argument leads to SQL...
PT-2024-38560 · Sourcecodester · Sourcecodester Clinics Patient Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Clinics Patient Management System version 1.0 Description: A vulnerability was found in the system, classified as problematic, affecting an unknown part of the file /update medicine.php. The manipulation of the medicine name...
CVE-2022-35117
Clinic's Patient Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via updatemedicinedetails.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Packing text box under the Update Medical...
PT-2022-22583 · Unknown · Clinic'S Patient Management System
Name of the Vulnerable Software and Affected Versions: Clinic's Patient Management System version 1.0 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the...
CVE-2022-36242
Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/updatemedicine.php?id=...
CVE-2022-36242
Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/updatemedicine.php?id=...
PT-2022-23271 · Unknown · Clinic'S Patient Management System
Name of the Vulnerable Software and Affected Versions: Clinic's Patient Management System version 1.0 Description: The issue is related to SQL Injection via the "/pms/update medicine.php?id=" endpoint. This allows for potential manipulation of database queries using the id variable...