Vulnerabilities > Oretnom23
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-16 | CVE-2022-36242 | SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 1.0 Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/update_medicine.php?id=. | 9.8 |
| 2022-08-10 | CVE-2022-36270 | Unspecified vulnerability in Oretnom23 Clinic'S Patient Management System 1.0 Clinic's Patient Management System v1.0 has arbitrary code execution via url: ip/pms/users.php. | 9.8 |
| 2022-08-10 | CVE-2022-36750 | SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 1.0 Clinic's Patient Management System v1.0 is vulnerable to SQL injection via /pms/update_user.php?id=. | 9.8 |
| 2022-07-12 | CVE-2022-2297 | Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Clinic'S Patient Management System 2.0 A vulnerability, which was classified as critical, was found in SourceCodester Clinics Patient Management System 2.0. | 8.8 |
| 2022-07-12 | CVE-2022-2298 | SQL Injection vulnerability in Oretnom23 Clinic'S Patient Management System 2.0 A vulnerability has been found in SourceCodester Clinics Patient Management System 2.0 and classified as critical. | 9.8 |
| 2022-01-28 | CVE-2021-45435 | SQL Injection vulnerability in Oretnom23 Simple Cold Storage Management System 1.0 An SQL Injection vulnerability exists in Sourcecodester Simple Cold Storage Management System using PHP/OOP 1.0 via the username field in login.php. | 9.8 |
| 2022-01-21 | CVE-2021-40247 | SQL Injection vulnerability in Oretnom23 Budget and Expense Tracker System 1.0 SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username field. | 9.8 |
| 2022-01-21 | CVE-2021-46309 | SQL Injection vulnerability in Oretnom23 Employee and Visitor Gate Pass Logging System 1.0 An SQL Injection vulnerability exists in Sourcecodester Employee and Visitor Gate Pass Logging System 1.0 via the username parameter. | 9.8 |
| 2021-12-21 | CVE-2021-45252 | SQL Injection vulnerability in Oretnom23 Simple Forum/Discussion System 1.0 Multiple SQL injection vulnerabilities are found on Simple Forum-Discussion System 1.0 For example on three applications which are manage_topic.php, manage_user.php, and ajax.php. | 9.8 |
| 2021-12-15 | CVE-2021-44653 | SQL Injection vulnerability in Oretnom23 Online Magazine Management System 1.0 Online Magazine Management System 1.0 contains a SQL injection authentication bypass vulnerability. | 9.8 |