VYPR

Online Clinic Management System

by Angeljudesuarez

CVEs (8)

  • CVE-2025-11038MedSep 26, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in itsourcecode Online Clinic Management System 1.0. Affected is an unknown function of the file /details.php?action=post. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has…

  • CVE-2025-10620MedSep 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in itsourcecode Online Clinic Management System 1.0. This vulnerability affects unknown code of the file /editp2.php. Executing manipulation of the argument id/firstname/lastname/type/age/address can lead to sql injection. The attack can be executed…

  • CVE-2025-10618MedSep 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely.…

  • CVE-2024-48597Oct 21, 2024
    risk 0.00cvss epss 0.00

    Online Clinic Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /success/editp.php?action=edit.

  • CVE-2023-6425Nov 30, 2023
    risk 0.00cvss epss 0.00

    A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/medical_records_view.php, in the FirstRecord parameter. Exploitation of this vulnerability…

  • CVE-2023-6424Nov 30, 2023
    risk 0.00cvss epss 0.00

    A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/disease_symptoms_view.php, in the FirstRecord parameter. Exploitation of this vulnerability…

  • CVE-2023-6423Nov 30, 2023
    risk 0.00cvss epss 0.00

    A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/events_view.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow…

  • CVE-2023-6422Nov 30, 2023
    risk 0.00cvss epss 0.00

    A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/patients_view.php, in the FirstRecord parameter. Exploitation of this vulnerability could…