| Title | CodeAstro Patient Record Management System 1.0 SQL Injection |
|---|
| Description | A Time-Based Blind SQL Injection vulnerability was discovered in the login portal of the Patient Record Management System (PRMS), developed by CodeAstro. The vulnerability allows unauthenticated attackers to inject arbitrary SQL commands, enabling unauthorized access, data extraction, and potentially full compromise of the database. |
|---|
| Source | ⚠️ https://github.com/Vanshdhawan188/Patient-Record-Management-System-SQL/blob/main/Patient%20Record%20Management%20System.md |
|---|
| User | Subhash Paudel (UID 66830) |
|---|
| Submission | 06/28/2025 21:21 (12 months ago) |
|---|
| Moderation | 07/07/2025 07:50 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 315085 [CodeAstro Patient Record Management System 1.0 /login.php uname sql injection] |
|---|
| Points | 18 |
|---|