Vulnerabilities (CVE)

Filtered by vendor Hospital\'s Patient Records Management System Project Subscribe
Total 26 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-32350 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2024-02-28 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_room_type.
CVE-2022-32341 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2024-02-28 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=user/manage_user&id=.
CVE-2022-22850 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2024-02-28 3.5 LOW 5.4 MEDIUM
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the description parameter in room_types.
CVE-2022-22296 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2024-02-28 5.0 MEDIUM 5.3 MEDIUM
Sourcecodester Hospital's Patient Records Management System 1.0 is vulnerable to Insecure Permissions via the id parameter in manage_user endpoint. Simply change the value and data of other users can be displayed.
CVE-2022-22852 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2024-02-28 4.3 MEDIUM 5.4 MEDIUM
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the description parameter in room_list.
CVE-2022-22851 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2024-02-28 3.5 LOW 5.4 MEDIUM
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the specialization parameter in doctors.php