| 제목 | PHPGurukul Hospital Management System 4.0 SQL Injection |
|---|
| 설명 | PHPGurukul Hospital Management System V4.0 is vulnerable to SQL Injection. The vulnerability is located in the '/hospital/hms/admin/manage-users.php' file via the 'id' parameter. An authenticated remote attacker can exploit this vulnerability to execute arbitrary SQL commands by injecting malicious SQL syntax (e.g., time-based blind injection), which may lead to unauthorized data deletion or sensitive information disclosure. |
|---|
| 원천 | ⚠️ https://github.com/Shaon-Xis/PHPGurukul-HMS-SQLi-PoC/tree/main |
|---|
| 사용자 | yan1451 (UID 94854) |
|---|
| 제출 | 2026. 01. 31. AM 03:28 (3 개월 ago) |
|---|
| 모더레이션 | 2026. 02. 07. PM 04:15 (8 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 344882 [PHPGurukul Hospital Management System 4.0 /admin/manage-users.php 아이디 SQL 주입] |
|---|
| 포인트들 | 20 |
|---|