Bzhlalala

#11556of 53,632
23.8Total CVSS
Vulnerabilities · 3
High
3
PT-2025-24100
7.5
2025-06-06
Code Projects · Code-Projects Patient Record Management System · CVE-2025-5762
**Name of the Vulnerable Software and Affected Versions** code-projects Patient Record Management System version 1.0 **Description** A critical issue was found in the code-projects Patient Record Management System. The problem is related to an unknown function in the file view hematology.php, where the manipulation of the `itr no` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For code-projects Patient Record Management System version 1.0, consider restricting access to the view hematology.php file until a patch is available. As a temporary workaround, avoid using the `itr no` argument in the affected function to minimize the risk of exploitation.
PT-2025-23880
7.5
2025-06-05
Code Projects · Patient Record Management System · CVE-2025-5627
**Name of the Vulnerable Software and Affected Versions** code-projects Patient Record Management System version 1.0 **Description** A critical issue was found in the Patient Record Management System. The problem is related to the manipulation of the `itr no` argument in the `/sputum form.php` file, which leads to SQL injection. This issue can be exploited remotely. **Recommendations** For code-projects Patient Record Management System version 1.0, consider restricting access to the `/sputum form.php` file until a patch is available. As a temporary workaround, avoid using the `itr no` argument in the affected file to minimize the risk of exploitation.
PT-2025-16587
8.8
2025-04-16
Code Projects · Code-Projects Patient Record Management System · CVE-2025-3685
**Name of the Vulnerable Software and Affected Versions** code-projects Patient Record Management System version 1.0 **Description** A critical issue has been discovered, allowing for SQL injection through the manipulation of the `ID` argument in the `/edit fpatient.php` file. This can be exploited remotely. **Recommendations** For code-projects Patient Record Management System version 1.0, consider restricting access to the `/edit fpatient.php` file until a patch is available. As a temporary workaround, avoid using the `ID` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.