Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Hospital\'s Patient Records Management System Project Subscribe
Filtered by product Hospital\'s Patient Records Management System
Total 26 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-32342 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/room_types/view_room_type.php?id=.
CVE-2022-32340 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=patients/view_patient&id=.
CVE-2022-32347 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_room.
CVE-2022-32344 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient.
CVE-2022-32337 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 7.5 HIGH 9.8 CRITICAL
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/patients/manage_patient.php?id=.
CVE-2022-22854 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 8.8 HIGH
An access control issue in hprms/admin/?page=user/list of Hospital Patient Record Management System v1.0 allows attackers to escalate privileges via accessing and editing the user list.
CVE-2022-24232 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.8 MEDIUM 7.8 HIGH
A local file inclusion in Hospital Patient Record Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
CVE-2022-32352 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 7.5 HIGH 9.8 CRITICAL
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_admission.
CVE-2022-32346 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/view_room.php?id=.
CVE-2022-32338 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/doctors/manage_doctor.php?id=.
CVE-2022-25003 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 7.5 HIGH 9.8 CRITICAL
Hospital Patient Record Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/doctors/view_doctor.php.
CVE-2022-25004 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 7.5 HIGH 9.8 CRITICAL
Hospital Patient Record Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/doctors/manage_doctor.php.
CVE-2022-32341 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=user/manage_user&id=.
CVE-2022-32343 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via hprms/admin/room_types/manage_room_type.php?id=.
CVE-2022-32349 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_history.
CVE-2022-32345 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/manage_room.php?id=.
CVE-2022-32350 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_room_type.
CVE-2022-26244 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 3.5 LOW 5.4 MEDIUM
A stored cross-site scripting (XSS) vulnerability in Hospital Patient Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "special" field.
CVE-2022-32348 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 6.5 MEDIUM 7.2 HIGH
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_doctor.
CVE-2022-22853 1 Hospital\'s Patient Records Management System Project 1 Hospital\'s Patient Records Management System 2023-12-10 3.5 LOW 5.4 MEDIUM
A stored cross-site scripting (XSS) vulnerability in Hospital Patient Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the Name field.