Filtered by vendor Projectworlds Subscriptions
Filtered by product Hospital Management System In Php Subscriptions
Total 7 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-45852 1 Projectworlds 1 Hospital Management System In Php 2024-08-04 5.3 Medium
An issue was discovered in Projectworlds Hospital Management System v1.0. Unauthorized malicious attackers can add patients without restriction via add_patient.php.
CVE-2021-43631 1 Projectworlds 1 Hospital Management System In Php 2024-08-04 9.8 Critical
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointment_no parameter in payment.php.
CVE-2021-43630 1 Projectworlds 1 Hospital Management System In Php 2024-08-04 8.8 High
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in add_patient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases leverage this vulnerability to get remote code execution on the remote web server.
CVE-2021-43629 1 Projectworlds 1 Hospital Management System In Php 2024-08-04 9.8 Critical
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in admin_home.php.
CVE-2021-43628 1 Projectworlds 1 Hospital Management System In Php 2024-08-04 9.8 Critical
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php.
CVE-2023-5053 1 Projectworlds 1 Hospital Management System In Php 2024-08-02 9.8 Critical
Hospital management system version 378c157 allows to bypass authentication. This is possible because the application is vulnerable to SQLI.
CVE-2023-5004 1 Projectworlds 1 Hospital Management System In Php 2024-08-02 9.8 Critical
Hospital management system version 378c157 allows to bypass authentication. This is possible because the application is vulnerable to SQLI.