Submeter #806633: code-projects Online Hospital Management System In PHP 1.0 SQL Injectioninformação

Títulocode-projects Online Hospital Management System In PHP 1.0 SQL Injection
DescriçãoOnline Hospital Management System 1.0 contains an unauthenticated SQL injection vulnerability in viewappointment.php via the delid parameter. An attacker can perform time-based blind attacks (e.g., using SLEEP()) to extract sensitive data, or delete all appointment records without any prior authentication.
Fonte⚠️ https://github.com/Sh1tKing/cve/blob/main/time-blind-sql.md
Utilizador
 sh1tking (UID 97427)
Submissão16/04/2026 20h10 (há 2 meses)
Moderação01/05/2026 16h32 (15 days later)
EstadoAceite
Entrada VulDB360578 [code-projects Online Hospital Management System 1.0 /viewappointment.php delid Injeção SQL]
Pontos18

VoltarVisão GeralPróximo

Want to know what is going to be exploited?

We predict KEV entries!