Online Medicine Ordering System Security Vulnerabilities and Issues — Online Medicine Ordering System CVE List

Lucene search

Oretnom23Online Medicine Ordering System

3 matches found

CVE•added 2024/02/14 3:15 p.m.•64 views

CVE-2024-25217

Online Medicine Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /omos/?p=products/view_product.

9.8CVSS8.1AI score0.00145EPSS

Web

CVE•added 2024/06/10 8:15 p.m.•53 views

CVE-2024-32167

Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Arbitrary file deletion vulnerability as the backend settings have the function of deleting pictures to delete any files.

9.1CVSS6.9AI score0.00152EPSS

CVE•added 2024/09/30 3:15 p.m.•39 views

CVE-2024-46293

Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Incorrect Access Control. There is a lack of authorization checks for admin operations. Specifically, an attacker can perform admin-level actions without possessing a valid session token. The application does not verify whether the...

9.8CVSS7.1AI score0.00238EPSS