Hospital Management System Security Vulnerabilities and Issues — Hospital Management System CVE List

Lucene search

Hospital Management System ProjectHospital Management System

4 matches found

CVE•added 2022/03/15 6:15 p.m.•70 views

CVE-2022-25491

HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in appointment.php.

7.5CVSS7.8AI score0.00201EPSS

CVE•added 2022/07/20 9:15 p.m.•59 views

CVE-2022-34590

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in /HMS/admin.php.

7.2CVSS7.2AI score0.04173EPSS

Web

CVE•added 2022/05/16 1:15 p.m.•57 views

CVE-2022-30012

In the POST request of the appointment.php page of HMS v.0, there are SQL injection vulnerabilities in multiple parameters, and database information can be obtained through injection.

7.5CVSS8.1AI score0.00207EPSS

CVE•added 2024/04/29 6:15 p.m.•44 views

CVE-2024-28320

Insecure Direct Object References (IDOR) vulnerability in Hospital Management System 1.0 allows attackers to manipulate user parameters for unauthorized access and modifications via crafted POST request to /patient/edit-user.php.

7.6CVSS6.7AI score0.00107EPSS