Vulnerabilities > Care2X

DATE CVE VULNERABILITY TITLE RISK
2021-08-26 CVE-2021-36352 Cross-site Scripting vulnerability in Care2X Hospital Information Management 2.7
Stored cross-site scripting (XSS) vulnerability in Care2x Hospital Information Management 2.7 Alpha.
network
low complexity
care2x CWE-79
5.4
2021-08-06 CVE-2021-36351 SQL Injection vulnerability in Care2X Hospital Information Management System
SQL Injection Vulnerability in Care2x Open Source Hospital Information Management 2.7 Alpha via the (1) pday, (2) pmonth, and (3) pyear parameters in GET requests sent to /modules/nursing/nursing-station.php.
network
low complexity
care2x CWE-89
critical
9.8