6.9

CVSS4.0

CVE-2025-9775 - RemoteClinic edit-my-profile.php unrestricted upload

A vulnerability was found in RemoteClinic up to 2.0. Impacted is an unknown function of the file /staff/edit-my-profile.php. The manipulation of the argument image results in unrestricted upload. The attack may be launched remotely. The exploit has been made public and could be used.

📅 Published: Sept. 1, 2025, 11:02 a.m. 🔄 Last Modified: Sept. 4, 2025, 4 p.m.

5.3

CVSS4.0

CVE-2025-9774 - RemoteClinic edit-patient.php information disclosure

A vulnerability has been found in RemoteClinic up to 2.0. This issue affects some unknown processing of the file /patients/edit-patient.php. The manipulation of the argument Email leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed to the public and…

📅 Published: Sept. 1, 2025, 10:32 a.m. 🔄 Last Modified: Sept. 4, 2025, 4:16 p.m.

5.3

CVSS4.0

CVE-2025-9773 - RemoteClinic edit.php cross site scripting

A flaw has been found in RemoteClinic up to 2.0. This vulnerability affects unknown code of the file /staff/edit.php. Executing manipulation of the argument Last Name can lead to cross site scripting. The attack can be launched remotely. The exploit has been published and may be used.

📅 Published: Sept. 1, 2025, 10:02 a.m. 🔄 Last Modified: Sept. 4, 2025, 4:16 p.m.

0.0