Online Covid Vaccination Scheduler System Security Vulnerabilities and Issues — Online Covid Vaccination Scheduler System CVE List

Lucene search

Online Covid Vaccination Scheduler System ProjectOnline Covid Vaccination Scheduler System

4 matches found

CVE•added 2021/08/03 6:15 p.m.•148 views

CVE-2021-36622

Sourcecodester Online Covid Vaccination Scheduler System 1.0 is affected vulnerable to Arbitrary File Upload. The admin panel has an upload function of profile photo accessible at http://localhost/scheduler/admin/?page=user. An attacker could upload a malicious file such as shell.php with the Conte...

9.8CVSS9.3AI score0.00412EPSS

CVE•added 2021/07/30 2:15 p.m.•70 views

CVE-2021-36621

Sourcecodester Online Covid Vaccination Scheduler System 1.0 is vulnerable to SQL Injection. The username parameter is vulnerable to time-based SQL injection. Upon successful dumping the admin password hash, an attacker can decrypt and obtain the plain-text password. Hence, the attacker could authe...

8.1CVSS8.4AI score0.0131EPSS

CVE•added 2022/01/24 7:15 p.m.•37 views

CVE-2021-41930

Cross site scripting (XSS) vulnerability in Sourcecodester Online Covid Vaccination Scheduler System v1 by oretnom23, allows attackers to execute arbitrary code via the lid parameter to /scheduler/addSchedule.php.

6.1CVSS6.1AI score0.00427EPSS

CVE•added 2021/10/27 5:15 p.m.•28 views

CVE-2021-37803

An SQL Injection vulnerability exists in Sourcecodester Online Covid Vaccination Scheduler System 1.0 via the username in lognin.php .

9.3CVSS8.4AI score0.0032EPSS