Changing Clinic Image System vulnerabilities
2 known vulnerabilities affecting changing/clinic_image_system.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-8857P2CRITICALCVSS 9.8≤ 2.4.23.21312025-08-29
CVE-2025-8857 [CRITICAL] CWE-798 CVE-2025-8857: Clinic Image System developed by Changing contains hard-coded Credentials, allowing unauthenticated
Clinic Image System developed by Changing contains hard-coded Credentials, allowing unauthenticated remote attackers to log into the system using administrator credentials embedded in the source code.
nvd
CVE-2025-8858P3HIGHCVSS 7.5≤ 2.4.23.2131v1.5.*+1 more2025-08-29
CVE-2025-8858 [HIGH] CWE-89 CVE-2025-8858: Clinic Image System developed by Changing has a SQL Injection vulnerability, allowing unauthenticate
Clinic Image System developed by Changing has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.
nvd