CVE-2025-4459 – Code-projects Patient Record Management System SQL Injection Vulnerability

May 9, 2025

CVE ID : CVE-2025-4459

Published : May 9, 2025, 4:16 a.m. | 2 hours, 24 minutes ago

Description : A vulnerability was found in code-projects Patient Record Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file fecalysis_form.php. The manipulation of the argument itr_no leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4460 – TOTOLINK N150RT Cross-Site Scripting Vulnerability

Next Article CVE-2025-4458 – Code-projects Patient Record Management System SQL Injection Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

This Motorola Razr deal at Best Buy is the top offer I’ve seen on the flip phone

Google Maps can identify and save places in your screenshots – here’s how

T-Mobile is giving loyal users a free line right now – how to see if you qualify

CTA warns of tariff-fueled price hikes on consumer tech – but it’s not all bad news

Big Node, VS Code, and Mantine updates

Big Node, VS Code, and Mantine updates

Prepare for Contact Center Week with Colleen Eager

Preparing for the Unthinkable: Safeguarding People and Productivity During India-Pakistan Conflicts

Microsoft confirms Offline Calendar for New Outlook on Windows 11

Microsoft confirms Offline Calendar for New Outlook on Windows 11

Windows 11 Microsoft Store tests Copilot integration to increase app downloads

Beyond APT: Software Management with Flatpak on Ubuntu

CVE-2025-4459 – Code-projects Patient Record Management System SQL Injection Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4507 – Campcodes Online Food Ordering System SQL Injection Vulnerability

CVE-2025-47692 – ContentStudio Missing Authorization Vulnerability

New “Goldoon” Botnet Targets D-Link Routers With Decade-Old Flaw

Salesforce Agentforce 2.0: Pioneering the Next Wave of Enterprise AI Development

Combining Cutting-Edge CSS Features Into a “Course Navigation” Component

How to use Linux without ever touching the terminal

New Medusa Android Trojan Targets Banking Users Across 7 Countries

HydePHP is a Laravel-powered Static Site Generator

CVE-2025-4038 – Code-projects Train Ticket Reservation System Stack-Based Buffer Overflow Vulnerability

CVE-2025-4459 – Code-projects Patient Record Management System SQL Injection Vulnerability

Related Posts