Submeter #640807: Campcodes Hospital Management System (Last Updated: August 18, 2024) Authentication Bypass Issuesinformação

TítuloCampcodes Hospital Management System (Last Updated: August 18, 2024) Authentication Bypass Issues
DescriçãoThe admin login is vulnerable to Boolean-based SQL Injection. Using the payload Test' OR 1=1 # in both username and password fields, I was able to bypass authentication and gain unauthorized access due to lack of input sanitization.
Fonte⚠️ https://github.com/Yashh-G/zero-day-research/blob/main/HMS_Admin_Auth_Bypass.pdf
Utilizador
 Yashh2 (UID 88530)
Submissão24/08/2025 11h30 (há 10 meses)
Moderação31/08/2025 19h15 (7 days later)
EstadoAceite
Entrada VulDB322070 [Campcodes Hospital Management System 1.0 Admin Dashboard Login /admin/ Senha Injeção SQL]
Pontos17

VoltarVisão GeralPróximo

Want to know what is going to be exploited?

We predict KEV entries!