MidnightBSD

Advisories for health_care_hospital_management_system_project

CVE-2024-37800

CodeProjects Restaurant Reservation System v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the Date parameter at index.php.

Products Affected

Vendor Product Version
health_care_hospital_management_system_project health_care_hospital_management_system 1.0
CVE-2024-37802

CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Patient Info module via the searvalu parameter.

Products Affected

Vendor Product Version
health_care_hospital_management_system_project health_care_hospital_management_system 1.0
CVE-2024-37803

Multiple stored cross-site scripting (XSS) vulnerabilities in CodeProjects Health Care hospital Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fname and lname parameters under the Staff Info page.

Products Affected

Vendor Product Version
health_care_hospital_management_system_project health_care_hospital_management_system 1.0
CVE-2024-38347

CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Room Information module via the id parameter.

Products Affected

Vendor Product Version
health_care_hospital_management_system_project health_care_hospital_management_system 1.0
CVE-2024-38348

CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Staff Info module via the searvalu parameter.

Products Affected

Vendor Product Version
health_care_hospital_management_system_project health_care_hospital_management_system 1.0