Pharmacy Management System getexpproduct.php SQL Injection Vulnerability

Pharmacy Management System (MPMS) is a multi-lingual pharmacy management system developed by Mayuri K. The Pharmacy Management System v1.0 version is vulnerable to SQL injection, which originates from the startDate in getexpproduct.php parameter in getexpproduct.php lacks validation for external input SQL statements. An attacker could exploit the vulnerability to execute illegal SQL commands to steal sensitive database data.