Submit #650177: itsourcecode Online Clinic Management System 1 Time-Based Blind SQL Injection in transact.phpinfo

Titleitsourcecode Online Clinic Management System 1 Time-Based Blind SQL Injection in transact.php
DescriptionThe Online Clinic Management System is vulnerable to time-based blind SQL Injection in the transact.php script. This flaw enables attackers to manipulate SQL queries and exfiltrate sensitive data (e.g., administrative credentials), which can lead to complete system compromise.
Source⚠️ https://github.com/drew-byte/Online-Clinic-Management-System_TimeBasedSQLi_PoC/blob/main/README.md
User
 drewbyte (UID 89075)
Submission09/08/2025 16:03 (9 months ago)
Moderation09/17/2025 13:31 (9 days later)
StatusAccepted
VulDB entry324645 [itsourcecode Online Clinic Management System 1.0 transact.php firstname sql injection]
Points18

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!