Phpgurukul

Doctor Appointment Management System

12 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.6

CVE-2025-45805

  • EPSS 0.01%
  • Veröffentlicht 03.09.2025 00:00:00
  • Zuletzt bearbeitet 16.12.2025 17:16:08

In phpgurukul Doctor Appointment Management System 1.0, an authenticated doctor user can inject arbitrary JavaScript code into their profile name. This payload is subsequently rendered without proper sanitization, when a user visits the website and s...

7.5

CVE-2025-50493

  • EPSS 0.09%
  • Veröffentlicht 28.07.2025 00:00:00
  • Zuletzt bearbeitet 29.07.2025 21:15:32

Improper session invalidation in the component /doctor/change-password.php of PHPGurukul Doctor Appointment Management System v1 allows attackers to execute a session hijacking attack.

9.8

CVE-2025-2649

Exploit
  • EPSS 0.12%
  • Veröffentlicht 23.03.2025 12:15:13
  • Zuletzt bearbeitet 27.03.2025 16:28:22

A vulnerability classified as critical was found in PHPGurukul Doctor Appointment Management System 1.0. This vulnerability affects unknown code of the file /check-appointment.php. The manipulation of the argument searchdata leads to sql injection. T...

9.8

CVE-2025-2640

Exploit
  • EPSS 0.12%
  • Veröffentlicht 23.03.2025 03:31:05
  • Zuletzt bearbeitet 02.04.2025 14:26:23

A vulnerability was found in PHPGurukul Doctor Appointment Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /doctor/appointment-bwdates-reports-details.php. The manipulation of the argument from...

9.8

CVE-2025-2383

Exploit
  • EPSS 0.13%
  • Veröffentlicht 17.03.2025 15:31:04
  • Zuletzt bearbeitet 27.03.2025 18:14:45

A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor Appointment Management System 1.0. Affected by this issue is some unknown functionality of the file /doctor/search.php. The manipulation of the argument searchdata...

5.4

CVE-2024-48807

  • EPSS 0.35%
  • Veröffentlicht 30.10.2024 21:15:14
  • Zuletzt bearbeitet 31.03.2025 19:24:10

Cross Site Scripting vulnerability in PHPGurukul Doctor Appointment Management System v.1.0 allows a local attacker to execute arbitrary code via the search parameter.

8.8

CVE-2024-4294

Exploit
  • EPSS 0.06%
  • Veröffentlicht 27.04.2024 23:15:06
  • Zuletzt bearbeitet 10.03.2025 16:18:28

A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor Appointment Management System 1.0. Affected by this issue is some unknown functionality of the file /doctor/view-appointment-detail.php. The manipulation of the ar...

5.4

CVE-2024-4293

Exploit
  • EPSS 0.12%
  • Veröffentlicht 27.04.2024 22:15:08
  • Zuletzt bearbeitet 27.02.2025 16:24:20

A vulnerability classified as problematic was found in PHPGurukul Doctor Appointment Management System 1.0. Affected by this vulnerability is an unknown functionality of the file appointment-bwdates-reports-details.php. The manipulation of the argume...

6.1

CVE-2022-46128

  • EPSS 0.23%
  • Veröffentlicht 26.01.2023 21:18:00
  • Zuletzt bearbeitet 01.04.2025 15:15:56

phpgurukul Doctor Appointment Management System V 1.0.0 is vulnerable to Cross Site Scripting (XSS) via searchdata=.

6.1

CVE-2022-45730

  • EPSS 0.34%
  • Veröffentlicht 26.01.2023 21:17:53
  • Zuletzt bearbeitet 01.04.2025 16:15:17

A cross-site scripting (XSS) vulnerability in Doctor Appointment Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search function.