CVE-2023-41527

Critical CVSS: 9.8

Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the password2 parameter in func.php.

Vendor

Product

CWE

Yayın Tarihi

2025-08-07 18:15:29

Güncelleme

2025-08-11 14:44:57

Source Identifier

cve@mitre.org

KEV Date Added

CWE-89 Hospital Management System CRITICAL Kishan0725 2025

https://gist.github.com/celbahraoui/cbfa4a06cb3cce7222718f8c25519c98 https://github.com/kishan0725/Hospital-Management-System

Medium

CVE-2025-63514

kishan0725 Hospital Management System has a Cross-Site Scripting (XSS) vulnerability in appsearch.php via the email para…

Medium

CVE-2025-63513

kishan0725 Hospital Management System v4 has an Insecure Direct Object Reference (IDOR) vulnerability in the appointment…

Medium

CVE-2025-63512

kishan0725 Hospital Management System/ v4 is vulnerable to SQL Injection in admin-panel1.php, specifically in the deleti…

Critical

CVE-2023-41525

Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the patient_contact parameter…

Critical

CVE-2023-41526

Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func1.php via the user…

Critical

CVE-2023-41528

Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in contact.php via the tx…