CVE-2024-12976

CVE-2024-12976 affects CodeZips Hospital Management System 1.0. Affected component: /staff.php where manipulation of the tel parameter enables SQL injection. The vulnerability is exploitable remotely and the exploit has been disclosed publicly. Several sources rate the issue as critical, with CVS...

CVE-2025-3206

The CVE-2025-3206 entry concerns code-projects Hospital Management System 1.0. A SQL injection vulnerability exists in the /admin/doctor-specilization.php file, caused by unsafely handling the doctorspecilization parameter. The issue is exploitable remotely and has been publicly disclosed. Multip...

CVE-2025-8954

CVE-2025-8954 affects PHPGurukul Hospital Management System 4.0 in the /admin/doctor-specilization.php file, where the doctorspecilization parameter is susceptible to SQL injection. The vulnerability can be exploited remotely and an exploit has been publicly disclosed. Multiple connected sources ...

CVE-2025-8955

PHPGurukul Hospital Management System 4.0 contains a SQL injection vulnerability in /admin/edit-doctor.php, triggered by manipulating the docfees parameter. The issue is remote-exploitable and the exploit has been publicly disclosed. Multiple sources corroborate the vulnerability, affecting the P...