VYPR
Vendor

Clinic

Products
1
CVEs
5
Across products
5
Status
Private

Products

1

Recent CVEs

5
  • CVE-2022-40471CriOct 31, 2022
    risk 0.68cvss 9.8epss 0.19

    Remote Code Execution in Clinic's Patient Management System v 1.0 allows Attacker to Upload arbitrary php webshell via profile picture upload functionality in users.php

  • CVE-2022-36242CriAug 16, 2022
    risk 0.64cvss 9.8epss 0.01

    Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/update_medicine.php?id=.

  • CVE-2022-36750CriAug 10, 2022
    risk 0.64cvss 9.8epss 0.01

    Clinic's Patient Management System v1.0 is vulnerable to SQL injection via /pms/update_user.php?id=.

  • CVE-2022-36251MedAug 22, 2022
    risk 0.40cvss 6.1epss 0.01

    Clinic's Patient Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via patients.php.

  • CVE-2022-35117MedAug 17, 2022
    risk 0.31cvss 4.8epss 0.00

    Clinic's Patient Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via update_medicine_details.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Packing text box…