Shodan
Vulnerabilities
Vulnerable Software
Hospital's Patient Records Management System Project:  >> Hospital's Patient Records Management System  Security Vulnerabilities
CVE-2022-32340
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=patients/view_patient&id=.
CVSS Score
7.2
EPSS Score
0.003
Published
2022-06-14
CVE-2022-32341
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=user/manage_user&id=.
CVSS Score
7.2
EPSS Score
0.003
Published
2022-06-14
CVE-2022-32342
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/room_types/view_room_type.php?id=.
CVSS Score
7.2
EPSS Score
0.003
Published
2022-06-14
CVE-2022-32343
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via hprms/admin/room_types/manage_room_type.php?id=.
CVSS Score
7.2
EPSS Score
0.003
Published
2022-06-14
CVE-2022-32344
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient.
CVSS Score
7.2
EPSS Score
0.003
Published
2022-06-14
CVE-2022-32345
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/manage_room.php?id=.
CVSS Score
7.2
EPSS Score
0.003
Published
2022-06-14
CVE-2022-26244
A stored cross-site scripting (XSS) vulnerability in Hospital Patient Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "special" field.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-03-30
CVE-2022-24232
A local file inclusion in Hospital Patient Record Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
CVSS Score
7.8
EPSS Score
0.004
Published
2022-02-24
CVE-2022-25003
Hospital Patient Record Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/doctors/view_doctor.php.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-02-24
CVE-2022-25004
Hospital Patient Record Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/doctors/manage_doctor.php.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-02-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved