Vulnerabilities > Oretnom23 > Clinic S Patient Management System > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-09-07 CVE-2024-8565 SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 2.0
A vulnerability was found in SourceCodesters Clinics Patient Management System 2.0.
network
low complexity
oretnom23 CWE-89
critical
 9.8
9.8
2024-08-05 CVE-2024-7494 SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Clinics Patient Management System 1.0.
network
low complexity
oretnom23 CWE-89
critical
 9.8
9.8
2024-08-04 CVE-2024-7454 SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Clinics Patient Management System 1.0.
network
low complexity
oretnom23 CWE-89
critical
 9.8
9.8
2022-10-31 CVE-2022-40471 Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
Remote Code Execution in Clinic's Patient Management System v 1.0 allows Attacker to Upload arbitrary php webshell via profile picture upload functionality in users.php
network
low complexity
oretnom23 CWE-434
critical
 9.8
9.8
2022-09-05 CVE-2022-3122 SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
A vulnerability was found in SourceCodester Clinics Patient Management System 1.0.
network
low complexity
oretnom23 CWE-89
critical
 9.8
9.8
2022-09-05 CVE-2022-3120 Unspecified vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
A vulnerability classified as critical was found in SourceCodester Clinics Patient Management System.
network
low complexity
oretnom23
critical
 9.8
9.8
2022-09-02 CVE-2022-36609 SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
Clinic's Patient Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /pms/update_patient.php.
network
low complexity
oretnom23 CWE-89
critical
 9.8
9.8
2022-08-16 CVE-2022-36242 SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/update_medicine.php?id=.
network
low complexity
oretnom23 CWE-89
critical
 9.8
9.8
2022-08-10 CVE-2022-36750 SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
Clinic's Patient Management System v1.0 is vulnerable to SQL injection via /pms/update_user.php?id=.
network
low complexity
oretnom23 CWE-89
critical
 9.8
9.8
2022-08-10 CVE-2022-36270 Unspecified vulnerability in Oretnom23 Clinic'S Patient Management System 1.0
Clinic's Patient Management System v1.0 has arbitrary code execution via url: ip/pms/users.php.
network
low complexity
oretnom23
critical
 9.8
9.8