📦 Openclinic Ga
by Openclinic Ga Project
🔍 What is Openclinic Ga?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability in OpenClinic GA allows unauthenticated attackers to retrieve patient lists via direct API queries to searchByAjax/patientslistShow.jsp. It affects OpenClinic GA installations, expo...
This vulnerability allows unauthenticated attackers to execute arbitrary SQL commands on OpenClinic GA systems through the componentStatus parameter in getAssets.jsp. Successful exploitation could lea...
This vulnerability allows unauthenticated SQL injection attacks against OpenClinic GA's getAssets.jsp page via the nomenclature parameter. Attackers can execute arbitrary SQL commands to potentially a...
This vulnerability allows unauthenticated attackers to execute arbitrary SQL commands on OpenClinic GA systems via the assetStatus parameter in getAssets.jsp. Successful exploitation could lead to com...
This is an authenticated SQL injection vulnerability in OpenClinic GA's 'getAssets.jsp' page that allows attackers to execute arbitrary SQL commands through the description parameter. Attackers with v...
CVE-2020-27227 is an unauthenticated command injection vulnerability in OpenClinic GA that allows remote attackers to execute arbitrary commands on the server. This affects OpenClinic GA version 5.173...
This vulnerability allows authenticated attackers to execute arbitrary SQL commands through the supplierUID parameter in OpenClinic GA's getAssets.jsp page. Successful exploitation could lead to data ...
This vulnerability in OpenClinic GA allows attackers to determine whether specific appointments exist by manipulating the AppointmentUid parameter in the printAppointmentPdf.jsp component. The system ...
This vulnerability allows authenticated attackers to perform directory path traversal attacks in OpenClinic GA by manipulating the Page parameter in GET requests to popup.jsp. This could enable unauth...
OpenClinic GA 5.194.18 has insecure file permissions that allow authenticated low-privilege users to replace critical service executables with malicious files. When the system restarts, these maliciou...
This vulnerability allows authenticated attackers to execute arbitrary SQL commands on OpenClinic GA systems. Attackers with valid credentials can exploit the SQL injection in the 'listImmoLabels.jsp'...
This vulnerability allows authenticated attackers to execute arbitrary SQL commands through the 'immoCode' parameter in OpenClinic GA's listImmoLabels.jsp page. Successful exploitation could lead to d...
This vulnerability allows authenticated attackers to execute arbitrary SQL commands on OpenClinic GA systems through the 'listImmoLabels.jsp' page. Attackers can potentially access, modify, or delete ...
This SQL injection vulnerability in OpenClinic GA's 'manageServiceStocks.jsp' page allows authenticated attackers to execute arbitrary SQL commands. Attackers could potentially read, modify, or delete...
This vulnerability allows authenticated attackers to execute arbitrary SQL commands through the 'findPersonID' parameter in OpenClinic GA's patientslist.do page. Successful exploitation could lead to ...
This vulnerability allows authenticated attackers to execute arbitrary SQL commands through the 'findDistrict' parameter in OpenClinic GA's patientslist.do page. Successful exploitation could lead to ...