Vulnerabilities (CVE)

Filtered by vendor Angeljudesuarez Subscribe

Filtered by product Online Clinic Management System

Total 5 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2025-11038	1 Angeljudesuarez	1 Online Clinic Management System	2025-10-03	6.5 MEDIUM	6.3 MEDIUM
A weakness has been identified in itsourcecode Online Clinic Management System 1.0. Affected is an unknown function of the file /details.php?action=post. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been made available to the public and could be exploited.
CVE-2025-10618	1 Angeljudesuarez	1 Online Clinic Management System	2025-09-20	6.5 MEDIUM	6.3 MEDIUM
A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. Other parameters might be affected as well.
CVE-2025-10620	1 Angeljudesuarez	1 Online Clinic Management System	2025-09-20	6.5 MEDIUM	6.3 MEDIUM
A flaw has been found in itsourcecode Online Clinic Management System 1.0. This vulnerability affects unknown code of the file /editp2.php. Executing manipulation of the argument id/firstname/lastname/type/age/address can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used.
CVE-2024-48597	1 Angeljudesuarez	1 Online Clinic Management System	2025-07-07	N/A	8.1 HIGH
Online Clinic Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /success/editp.php?action=edit.
CVE-2024-40393	1 Angeljudesuarez	1 Online Clinic Management System	2025-03-18	N/A	9.8 CRITICAL
Online Clinic Management System In PHP With Free Source code v1.0 was discovered to contain a SQL injection vulnerability via the user parameter at login.php.