Aggregates CVE and security vulnerability intelligence across all online_diagnostic_lab_management_system_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk sql injection and vendor risk cross-site scripting and related problems; some flaws may lead to vendor impact data exposure.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-43163 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /clients/view_client.php. | [email protected] | 7.2 | 0.73% | 2022-11-17 | 2026-06-17 |
| CVE-2022-43162 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/view_test.php. | [email protected] | 7.2 | 0.73% | 2022-11-17 | 2026-06-17 |
| CVE-2022-43135 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at /diagnostic/login.php. | [email protected] | 9.8 | 0.75% | 2022-11-16 | 2026-06-17 |
| CVE-2022-43058 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms//classes/Master.php?f=delete_activity. | [email protected] | 9.8 | 0.64% | 2022-11-09 | 2026-06-17 |
| CVE-2022-43052 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Users.php?f=delete. | [email protected] | 7.2 | 0.73% | 2022-11-07 | 2026-06-17 |
| CVE-2022-43051 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Users.php?f=delete_test. | [email protected] | 7.2 | 0.73% | 2022-11-07 | 2026-06-17 |
| CVE-2022-43063 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Users.php?f=delete_client. | [email protected] | 7.2 | 0.73% | 2022-11-03 | 2026-06-17 |
| CVE-2022-43062 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_appointment. | [email protected] | 7.2 | 0.73% | 2022-11-03 | 2026-06-17 |
| CVE-2022-43068 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation. | [email protected] | 7.2 | 0.73% | 2022-11-02 | 2026-06-17 |
| CVE-2022-43066 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Master.php?f=delete_message. | [email protected] | 7.2 | 0.82% | 2022-11-02 | 2026-06-17 |
| CVE-2022-43227 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/admin/?page=appointments/view_appointment. | [email protected] | 7.2 | 0.73% | 2022-11-02 | 2026-06-17 |
| CVE-2022-43226 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/?page=appointments/view_appointment. | [email protected] | 8.8 | 0.83% | 2022-11-02 | 2026-06-17 |
| CVE-2022-43127 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /appointments/update_status.php. | [email protected] | 7.2 | 0.73% | 2022-11-01 | 2026-06-17 |
| CVE-2022-43126 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/tests/manage_test.php. | [email protected] | 7.2 | 0.73% | 2022-11-01 | 2026-06-17 |
| CVE-2022-43125 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /appointments/manage_appointment.php. | [email protected] | 7.2 | 0.73% | 2022-11-01 | 2026-06-17 |
| CVE-2022-43124 | Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=user/manage_user. | [email protected] | 7.2 | 0.73% | 2022-11-01 | 2026-06-17 |
| CVE-2022-42064 | Online Diagnostic Lab Management System version 1.0 remote exploit that bypasses login with SQL injection and then uploads a shell. | [email protected] | 9.8 | 1.13% | 2022-10-14 | 2026-06-17 |
| CVE-2022-41534 | Online Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/createOrder.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | [email protected] | 7.2 | 1.14% | 2022-10-13 | 2026-06-17 |
| CVE-2022-41533 | Online Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | [email protected] | 7.2 | 0.95% | 2022-10-13 | 2026-06-17 |
| CVE-2022-42074 | Online Diagnostic Lab Management System v1.0 is vulnerable to SQL Injection via /diagnostic/editcategory.php?id=. | [email protected] | 7.2 | 0.73% | 2022-10-07 | 2026-06-17 |