Hospital Management System Security Vulnerabilities and Issues — Hospital Management System CVE List

Lucene search

Hospital Management System ProjectHospital Management System

8 matches found

CVE•added 2022/05/11 7:15 p.m.•66 views

CVE-2022-30449

Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in room.php.

9.8CVSS9.9AI score0.00194EPSS

CVE•added 2022/05/11 7:15 p.m.•64 views

CVE-2022-30448

Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a File upload vulnerability in treatmentrecord.php.

9.8CVSS9.6AI score0.00319EPSS

CVE•added 2022/05/03 9:15 p.m.•63 views

CVE-2022-27413

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the adminname parameter in admin.php.

9.8CVSS9.8AI score0.12018EPSS

CVE•added 2022/05/15 4:15 p.m.•62 views

CVE-2022-28929

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the delid parameter at viewtreatmentrecord.php.

9.8CVSS9.8AI score0.00207EPSS

CVE•added 2022/05/04 3:15 a.m.•60 views

CVE-2022-27420

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the patient_contact parameter in patientsearch.php.

9.8CVSS9.8AI score0.00192EPSS

CVE•added 2022/05/16 1:15 p.m.•58 views

CVE-2022-30011

In HMS 1.0 when requesting appointment.php through POST, multiple parameters can lead to a SQL injection vulnerability.

9.8CVSS9.7AI score0.01616EPSS

CVE•added 2022/05/16 1:15 p.m.•57 views

CVE-2022-30012

In the POST request of the appointment.php page of HMS v.0, there are SQL injection vulnerabilities in multiple parameters, and database information can be obtained through injection.

7.5CVSS8.1AI score0.00207EPSS

CVE•added 2022/05/26 5:15 p.m.•37 views

CVE-2022-30516

In Hospital-Management-System v1.0, the editid parameter in the doctor.php page is vulnerable to SQL injection attacks.

9.8CVSS9.8AI score0.00207EPSS