Approved changes feed: RSS · Atom

cpe:2.3:a:changing:clinic_image_system:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorChanging (28c7953a-d2e6-5f3d-ab21-ba497dfbd3f3)
ProductClinic Image System (af0de0ef-93a4-590e-8cca-83fd1666de31)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-8858 vulnerable 2026-06-08 07:45:21.321177 Changing|Clinic Image System - SQL Injection
HIGH (7.5)
Clinic Image System developed by Changing has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.
Published: 2025-08-29T03:36:21.390Z
Updated: 2025-08-29T16:27:14.212Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-8857 vulnerable 2026-06-08 07:45:21.320802 Changing|Clinic Image System - Use of Hard-coded Credentials
CRITICAL (9.8)
Clinic Image System developed by Changing contains hard-coded Credentials, allowing unauthenticated remote attackers to log into the system using administrator credentials embedded in the source code.
Published: 2025-08-29T03:33:20.683Z
Updated: 2025-08-29T13:26:36.549Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.