Hospital Management System Security Vulnerabilities and Issues — Hospital Management System CVE List

Lucene search

PhpgurukulHospital Management System

5 matches found

CVE•added 2024/01/10 9:15 a.m.•43 views

CVE-2020-26630

A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a special payload in the 'Doctor Specialization' field under the 'Go to Doctors' tab after logging in as an admin.

4.9CVSS5.5AI score0.00123EPSS

CVE•added 2025/01/21 4:15 p.m.•37 views

CVE-2024-56990

PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) in /view-medhistory.php and /admin/view-patient.php.

4.5CVSS5.8AI score0.00051EPSS

CVE•added 2025/01/21 3:15 p.m.•36 views

CVE-2024-56998

PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) in /edit-profile.php via the parameter $address.

4.2CVSS5.8AI score0.00031EPSS

CVE•added 2025/01/21 3:15 p.m.•31 views

CVE-2024-56997

PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) in /doctor/index.php via the 'Email' parameter.

4.2CVSS6.2AI score0.00031EPSS

CVE•added 2024/01/10 9:15 a.m.•24 views

CVE-2020-26627

A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a crafted payload entered into the 'Admin Remark' parameter under the 'Contact Us Queries -> Unread Query' tab.

4.9CVSS5.4AI score0.00123EPSS