| Title | code-projects Hospital Management System 1.0 SQL Injection |
|---|
| Description | In the hostpital/hms/admin/index.php file of Hospital Management System, the username and password parameter is obtained, and the SQL statement is concatenated to the SQL statement without filtering the execution, resulting in SQL injection vulnerabilities and login as administrator |
|---|
| Source | ⚠️ https://github.com/Rocky-Bull/myCVE/blob/main/Hospital_Management_System_SQLi.md |
|---|
| User | Hexer. (UID 79448) |
|---|
| Submission | 12/26/2024 07:02 AM (1 Year ago) |
|---|
| Moderation | 12/26/2024 09:01 AM (2 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 289334 [code-projects Hospital Management System 1.0 Login /admin/index.php username/password sql injection] |
|---|
| Points | 17 |
|---|