CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-38347
https://notcve.org/view.php?id=CVE-2024-38347
CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Room Information module via the id parameter. Se descubrió que CodeProjects Health Care hospital Management System v1.0 contenía una vulnerabilidad de inyección SQL en el módulo de información de la habitación a través del parámetro id. • https://code-projects.org/health-care-hospital-in-php-css-js-and-mysql-free-download https://github.com/SandeepRajauriya/CVEs/blob/main/CVE-2024-38347 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 1CVE-2024-37802
https://notcve.org/view.php?id=CVE-2024-37802
CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Patient Info module via the searvalu parameter. Se descubrió que CodeProjects Health Care hospital Management System v1.0 contenía una vulnerabilidad de inyección SQL en el módulo de información del paciente a través del parámetro servalu. • https://code-projects.org/health-care-hospital-in-php-css-js-and-mysql-free-download https://github.com/SandeepRajauriya/CVEs/blob/main/CVE-2024-37802 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2024-37800
https://notcve.org/view.php?id=CVE-2024-37800
CodeProjects Restaurant Reservation System v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the Date parameter at index.php. Se descubrió que CodeProjects Restaurant Reservation System v1.0 contiene una vulnerabilidad de cross-site scripting (XSS) reflejado a través del parámetro Fecha en index.php. • https://code-projects.org/restaurant-reservation-system-in-php-with-source-code https://github.com/SandeepRajauriya/CVEs/blob/main/CVE-2024-37800 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-0364 – PHPGurukul Hospital Management System query-details.php sql injection
https://notcve.org/view.php?id=CVE-2024-0364
A vulnerability, which was classified as critical, was found in PHPGurukul Hospital Management System 1.0. This affects an unknown part of the file admin/query-details.php. The manipulation of the argument adminremark leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250131. • https://github.com/laoquanshi/PHPGurukul-Hospital-Management-System/blob/main/PHPGurukul%20Hospital%20Management%20System%20SQL11.docx https://vuldb.com/?ctiid.250131 https://vuldb.com/?id.250131 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-0363 – PHPGurukul Hospital Management System patient-search.php sql injection
https://notcve.org/view.php?id=CVE-2024-0363
A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file admin/patient-search.php. The manipulation of the argument searchdata leads to sql injection. The exploit has been disclosed to the public and may be used. VDB-250130 is the identifier assigned to this vulnerability. • https://github.com/laoquanshi/PHPGurukul-Hospital-Management-System/blob/main/PHPGurukul%20Hospital%20Management%20System%20SQL10.docx https://vuldb.com/?ctiid.250130 https://vuldb.com/?id.250130 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •