GCVE - cpe:2.3:a:mayurik:hospital_management

Approved changes feed: RSS · Atom

cpe:2.3:a:mayurik:hospital_management_system:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor	Mayurik (`727a23cf-b3c3-54bf-b09e-da411a18e16c`)
Product	Hospital Management System (`2e7b3aa2-2447-5dd8-8811-d6a38619e522`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-28320`	vulnerable	2026-06-03 14:55:25.422780	Details available Insecure Direct Object References (IDOR) vulnerability in Hospital Management System 1.0 allows attackers to manipulate user parameters for unauthorized access and modifications via crafted POST request to /patient/edit-user.php. Published: 2024-04-29T00:00:00.000Z Updated: 2024-08-02T00:48:49.655Z Open on db.gcve.eu Reference links https://packetstormsecurity.com/files/177326/Hospital-Management-System-1.0-Insecure-Direct-Object-Reference-Account-Takeover.html https://sospiro014.github.io/Hospital-Management-System-1.0-Insecure-Direct-Object-Reference-+-Account-Takeover	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-11102`	vulnerable	2026-06-03 14:54:13.421099	SourceCodester Hospital Management System edit-doc.php cross site scripting LOW (3.5) A vulnerability was found in SourceCodester Hospital Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /vm/doctor/edit-doc.php. The manipulation of the argument name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. Published: 2024-11-12T04:00:14.685Z Updated: 2024-11-12T16:31:26.039Z Open on db.gcve.eu Reference links https://vuldb.com/?id.283922 https://vuldb.com/?ctiid.283922 https://vuldb.com/?submit.441694 https://github.com/Salah-Tayeh/CVEs-and-Vulnerabilities/blob/main/Hospital%20Management%20System%20-%20Stored%20XSS.md https://drive.google.com/file/d/1Omjwoh6B2xh41c3Av0_VJsoR7tascb1_/view?usp=sharing	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-11073`	vulnerable	2026-06-03 14:54:13.365495	SourceCodester Hospital Management System delete-account.php improper authorization MEDIUM (4.3) A vulnerability classified as problematic has been found in SourceCodester Hospital Management System 1.0. This affects an unknown part of the file /vm/patient/delete-account.php. The manipulation of the argument id leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Published: 2024-11-11T17:00:11.900Z Updated: 2024-11-12T20:14:14.993Z Open on db.gcve.eu Reference links https://vuldb.com/?id.283869 https://vuldb.com/?ctiid.283869 https://vuldb.com/?submit.440799 https://github.com/Salah-Tayeh/CVEs-and-Vulnerabilities/blob/main/Hospital%20Management%20System%20-%20IDOR%20Causing%20Deletion%20of%20any%20patient%20account.md https://drive.google.com/file/d/1yFo0re8taTry7oR4-EDg3UHwO2lkqO9N/view?usp=sharing	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Mayuri K Hospital Management System 1.0

PURL mappings

Vulnerability references

Contribute