3 matches found
CVE-2022-2676
The CVE-2022-2676 issue affects SourceCodester Electronic Medical Records System, specifically the POST Request Handler. The root cause is manipulation of the user_email parameter, leading to an SQL injection vulnerability that can be exploited remotely. Multiple connected sources confirm the vul...
CVE-2022-2693
The CVE-2022-2693 vulnerability affects SourceCodester Electronic Medical Records System, specifically the register.php file in the UPDATE Statement Handler. The root cause is injectable SQL through the pconsultation parameter, allowing remote exploitation with publicly disclosed exploits. Docume...
CVE-2023-1151
CVE-2023-1151 affects SourceCodester Electronic Medical Records System 1.0, specifically the Cookie Handler’s administrator.php. The vulnerability arises from manipulating the userid parameter, causing SQL injection via a functionality exposed in that file. It is exploitable remotely, and the exp...