| 제목 | PHPGurukul Hospital Management System 4.0 Cross Site Scripting |
|---|
| 설명 | A time-based blind and Union SQL injection vulnerability exists in the searchdata parameter of Hospital Management System v4.0, allowing remote attackers to execute arbitrary SQL commands by triggering with union and time delays in the database response. |
|---|
| 원천 | ⚠️ https://github.com/Ant1sec-ops/HMS4.0-Avdisories/blob/main/Union-based-sqli-on-doctor-search/exploit.md |
|---|
| 사용자 | Subhash Paudel (UID 66830) |
|---|
| 제출 | 2025. 06. 20. PM 09:04 (10 개월 ago) |
|---|
| 모더레이션 | 2025. 06. 24. AM 10:14 (4 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 313742 [PHPGurukul Hospital Management System 4.0 /doctor/search.php searchdata SQL 주입] |
|---|
| 포인트들 | 17 |
|---|