Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Hospital\'s Patient Records Management System Project Subscribe

CVSS v3 Filter

ALL
NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 24 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-32337 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-22 7.5 HIGH 9.8 CRITICAL
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/patients/manage_patient.php?id=.
CVE-2022-32352 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-22 7.5 HIGH 9.8 CRITICAL
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_admission.
CVE-2022-32341 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=user/manage_user&id=.
CVE-2022-32343 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via hprms/admin/room_types/manage_room_type.php?id=.
CVE-2022-32344 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient.
CVE-2022-32340 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=patients/view_patient&id=.
CVE-2022-32342 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/room_types/view_room_type.php?id=.
CVE-2022-32339 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/doctors/view_doctor.php?id=.
CVE-2022-32349 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_history.
CVE-2022-32348 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_doctor.
CVE-2022-32347 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_room.
CVE-2022-32345 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/manage_room.php?id=.
CVE-2022-32346 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/view_room.php?id=.
CVE-2022-32338 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/doctors/manage_doctor.php?id=.
CVE-2022-32351 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_message.
CVE-2022-32350 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-06-21 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_room_type.
CVE-2022-26244 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-05-12 3.5 LOW 5.4 MEDIUM
A stored cross-site scripting (XSS) vulnerability in Hospital Patient Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "special" field.
CVE-2022-25004 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-05-12 7.5 HIGH 9.8 CRITICAL
Hospital Patient Record Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/doctors/manage_doctor.php.
CVE-2022-22853 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-05-12 3.5 LOW 5.4 MEDIUM
A stored cross-site scripting (XSS) vulnerability in Hospital Patient Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the Name field.
CVE-2022-22854 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-02-22 6.5 MEDIUM 8.8 HIGH
An access control issue in hprms/admin/?page=user/list of Hospital Patient Record Management System v1.0 allows attackers to escalate privileges via accessing and editing the user list.
CVE-2022-22852 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-02-02 4.3 MEDIUM 5.4 MEDIUM
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the description parameter in room_list.
CVE-2022-22850 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-02-02 3.5 LOW 5.4 MEDIUM
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the description parameter in room_types.
CVE-2022-22851 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-02-01 3.5 LOW 5.4 MEDIUM
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the specialization parameter in doctors.php
CVE-2022-22296 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2022-01-28 5.0 MEDIUM 5.3 MEDIUM
Sourcecodester Hospital's Patient Records Management System 1.0 is vulnerable to Insecure Permissions via the id parameter in manage_user endpoint. Simply change the value and data of other users can be displayed.