2 matches found
CVE-2021-43630
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in addpatient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases leverage this vulnerability to get remote code execution on the remote web...
CVE-2021-43630
Projectworlds Hospital Management System v1.0 is affected by an SQL injection in add_patient.php across multiple parameters. The root cause is improper input handling allowing an authenticated attacker to manipulate queries, potentially compromising the database and, in some cases, achieving remo...