Openclinic Ga Security Vulnerabilities and Issues — Openclinic Ga CVE List

Lucene search

Openclinic Ga ProjectOpenclinic Ga

10 matches found

cve•added 2021/05/10 8:15 p.m.•51 views

CVE-2020-27232

An exploitable SQL injection vulnerability exists in ‘manageServiceStocks.jsp’ page of OpenClinic GA 5.173.3. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

8.8CVSS8.9AI score0.01189EPSS

cve•added 2021/05/10 7:15 p.m.•49 views

CVE-2020-27226

An exploitable SQL injection vulnerability exists in ‘quickFile.jsp’ page of OpenClinic GA 5.173.3. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

8.8CVSS8.9AI score0.01106EPSS

cve•added 2021/05/10 7:15 p.m.•39 views

CVE-2020-27229

A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findPersonID parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnera...

8.8CVSS9.2AI score0.0025EPSS

cve•added 2021/05/10 7:15 p.m.•39 views

CVE-2020-27231

A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findDistrict parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnera...

8.8CVSS9.2AI score0.00277EPSS

cve•added 2021/05/11 11:15 a.m.•37 views

CVE-2020-27242

An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoLocation parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerabi...

8.8CVSS8.9AI score0.0025EPSS

cve•added 2021/05/11 11:15 a.m.•37 views

CVE-2020-27244

An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoCode parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS8.9AI score0.00277EPSS

cve•added 2021/05/10 7:15 p.m.•35 views

CVE-2020-27230

A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findSector parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection An attacker can make an authenticated HTTP request to trigger this vulnerabil...

8.8CVSS9AI score0.0025EPSS

cve•added 2021/05/11 11:15 a.m.•35 views

CVE-2020-27243

An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoService parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerabil...

8.8CVSS8.9AI score0.0025EPSS

cve•added 2021/05/11 11:15 a.m.•34 views

CVE-2020-27246

An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoComment parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerabil...

8.8CVSS8.9AI score0.00277EPSS

cve•added 2021/05/11 11:15 a.m.•33 views

CVE-2020-27245

An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoBuyer parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerabilit...

8.8CVSS8.9AI score0.0025EPSS