CyberSec.Space Logo
Back to CVE Browser

CVE-2021-43628

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0720%
EPSS Percentile43.82th
PublishedDec 22, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php.

Affected Platforms (CPE)

πŸ“¦
Projectworlds

Hospital Management System In Php

= 1.0

References & Advisories

πŸ”— https://github.com/projectworldsofficial/hospital-management-system-in-php/issues/2
πŸ”— https://projectworlds.in/free-projects/php-projects/hospital-management-system-in-php/
πŸ”— https://github.com/projectworldsofficial/hospital-management-system-in-php/issues/2
πŸ”— https://projectworlds.in/free-projects/php-projects/hospital-management-system-in-php/

Related Vulnerabilities

CVE-2021-440959.8

A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote att...

CVE-2020-51928.8

PHPGurukul Hospital Management System in PHP v4.0 suffers from multiple SQL injection vulnerabilities: multiple pages and paramete...

CVE-2020-221657.5

PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\user-login.php. Remote unauthenticated...

CVE-2020-221647.5

PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\check_availability.php. Remote unauthe...