riteshs4hu/My-CVE

Releases0

CVE-2023-37068, CVE-2023-37069, CVE-2023-37070 Exploits

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-37070 ↗	Aug 14, 2023Monday, 14 August 2023, 13:15	4.8 MEDIUM	—
Code Projects Hospital Information System 1.0 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-37069 ↗	Aug 10, 2023Thursday, 10 August 2023, 13:15	9.8 CRITICAL	—
Code-Projects Online Hospital Management System V1.0 is vulnerable to SQL Injection (SQLI) attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the login id and password fields during the login process, enabling an attacker to inject malicious SQL code.
CVE-2023-37068 ↗	Aug 9, 2023Wednesday, 9 August 2023, 20:15	9.8 CRITICAL	—
Code-Projects Gym Management System V1.0 allows remote attackers to execute arbitrary SQL commands via the login form, leading to unauthorized access and potential data manipulation. This vulnerability arises due to insufficient validation of user-supplied input in the username and password fields, enabling SQL Injection attacks.