Pharmacy Management System (MPMS) is a multilingual pharmacy management system from the personal developer Mayuri K. A SQL injection vulnerability exists in Pharmacy Management System v1.0, which stems from a lack of validation of the id parameter in editcategory.php against external input SQL statement validation. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.