Lucene search

Hospital Management System In Php Security Vulnerabilities

cve

CVE-2021-43628

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php.

9.8CVSS

9.7AI Score

0.002EPSS

2021-12-22 06:15 PM

cve

CVE-2021-43629

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in admin_home.php.

9.8CVSS

9.7AI Score

0.002EPSS

2021-12-22 06:15 PM

cve

CVE-2021-43630

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in add_patient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases leverage this vulnerability to get remote code execution on the remote web serv...

8.8CVSS

9AI Score

0.001EPSS

2021-12-22 06:15 PM

cve

CVE-2021-43631

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointment_no parameter in payment.php.

9.8CVSS

9.7AI Score

0.002EPSS

2021-12-22 06:15 PM

cve

CVE-2021-45852

An issue was discovered in Projectworlds Hospital Management System v1.0. Unauthorized malicious attackers can add patients without restriction via add_patient.php.

5.3CVSS

5.2AI Score

0.001EPSS

2022-03-16 10:15 AM

cve

CVE-2023-5004

Hospital management system version 378c157 allows to bypass authentication. This is possible because the application is vulnerable to SQLI.

9.8CVSS

9.3AI Score

0.001EPSS

2023-09-28 09:15 PM

cve

CVE-2023-5053

Hospital management system version 378c157 allows to bypass authentication. This is possible because the application is vulnerable to SQLI.

9.8CVSS

9.3AI Score

0.001EPSS

2023-09-28 09:15 PM