CVEブラウザに戻る

CVE-2021-43628

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0720%

EPSS Percentile43.82th

Published2021年12月22日

Last Modified2024年11月21日

Vulnerability Description

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php.

Affected Platforms (CPE)

📦

Projectworlds

Hospital Management System In Php

= 1.0

References & Advisories

🔗 https://github.com/projectworldsofficial/hospital-management-system-in-php/issues/2

🔗 https://projectworlds.in/free-projects/php-projects/hospital-management-system-in-php/

🔗 https://github.com/projectworldsofficial/hospital-management-system-in-php/issues/2

🔗 https://projectworlds.in/free-projects/php-projects/hospital-management-system-in-php/

関連する脆弱性情報

CVE-2021-440959.8

A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote att...

CVE-2020-51928.8

PHPGurukul Hospital Management System in PHP v4.0 suffers from multiple SQL injection vulnerabilities: multiple pages and paramete...

CVE-2020-221657.5

PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\user-login.php. Remote unauthenticated...

CVE-2020-221647.5

PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\check_availability.php. Remote unauthe...