Shodan
Vulnerabilities
Vulnerable Software
Online Diagnostic Lab Management System Project:  >> Online Diagnostic Lab Management System  >> 1.0  Security Vulnerabilities
CVE-2022-43226
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/?page=appointments/view_appointment.
CVSS Score
8.8
EPSS Score
0.001
Published
2022-11-02
CVE-2022-43227
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/admin/?page=appointments/view_appointment.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-11-02
CVE-2022-43124
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=user/manage_user.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-11-01
CVE-2022-43125
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /appointments/manage_appointment.php.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-11-01
CVE-2022-43126
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/tests/manage_test.php.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-11-01
CVE-2022-43127
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /appointments/update_status.php.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-11-01
CVE-2022-42064
Online Diagnostic Lab Management System version 1.0 remote exploit that bypasses login with SQL injection and then uploads a shell.
CVSS Score
9.8
EPSS Score
0.0
Published
2022-10-14
CVE-2022-41533
Online Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-10-13
CVE-2022-41534
Online Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/createOrder.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-10-13
CVE-2022-42074
Online Diagnostic Lab Management System v1.0 is vulnerable to SQL Injection via /diagnostic/editcategory.php?id=.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-10-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved