CVE-2023-5004
- EPSS 0.05%
- Veröffentlicht 28.09.2023 21:15:10
- Zuletzt bearbeitet 21.11.2024 08:40:52
Hospital management system version 378c157 allows to bypass authentication. This is possible because the application is vulnerable to SQLI.
CVE-2023-5053
- EPSS 0.05%
- Veröffentlicht 28.09.2023 21:15:10
- Zuletzt bearbeitet 21.11.2024 08:40:58
Hospital management system version 378c157 allows to bypass authentication. This is possible because the application is vulnerable to SQLI.
CVE-2021-45852
- EPSS 0.2%
- Veröffentlicht 16.03.2022 10:15:08
- Zuletzt bearbeitet 21.11.2024 06:33:09
An issue was discovered in Projectworlds Hospital Management System v1.0. Unauthorized malicious attackers can add patients without restriction via add_patient.php.
CVE-2021-43628
- EPSS 0.25%
- Veröffentlicht 22.12.2021 18:15:07
- Zuletzt bearbeitet 21.11.2024 06:29:32
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php.
CVE-2021-43629
- EPSS 0.25%
- Veröffentlicht 22.12.2021 18:15:07
- Zuletzt bearbeitet 21.11.2024 06:29:32
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in admin_home.php.
CVE-2021-43630
- EPSS 1.42%
- Veröffentlicht 22.12.2021 18:15:07
- Zuletzt bearbeitet 21.11.2024 06:29:32
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in add_patient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases leverage this vulnerability to...
CVE-2021-43631
- EPSS 0.25%
- Veröffentlicht 22.12.2021 18:15:07
- Zuletzt bearbeitet 21.11.2024 06:29:32
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointment_no parameter in payment.php.