Vulnerabilities > Hospital Management System Project > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-31 | CVE-2022-24136 | Unrestricted Upload of File with Dangerous Type vulnerability in Hospital Management System Project Hospital Management System 1.0 Hospital Management System v1.0 is affected by an unrestricted upload of dangerous file type vulerability in treatmentrecord.php. | 9.8 |
| 2022-03-15 | CVE-2022-25490 | SQL Injection vulnerability in Hospital Management System Project Hospital Management System 1.0 HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in department.php. | 9.8 |
| 2022-03-15 | CVE-2022-25492 | SQL Injection vulnerability in Hospital Management System Project Hospital Management System 1.0 HMS v1.0 was discovered to contain a SQL injection vulnerability via the medicineid parameter in ajaxmedicine.php. | 9.8 |
| 2022-02-24 | CVE-2022-25402 | Unspecified vulnerability in Hospital Management System Project Hospital Management System 1.0 An incorrect access control issue in HMS v1.0 allows unauthenticated attackers to read and modify all PHP files. | 9.1 |
| 2022-02-24 | CVE-2022-25403 | SQL Injection vulnerability in Hospital Management System Project Hospital Management System 1.0 HMS v1.0 was discovered to contain a SQL injection vulnerability via the component admin.php. | 9.8 |
| 2021-08-16 | CVE-2021-38754 | SQL Injection vulnerability in Hospital Management System Project Hospital Management System SQL Injection vulnerability in Hospital Management System due to lack of input validation in messearch.php. | 9.8 |