6 matches found
CVE-2022-23366
HMS v1.0 was discovered to contain a SQL injection vulnerability via patientlogin.php...
Hospital Management Startup 1.0 - (Multiple) SQL injection Vulnerability
Exploit Title: Hospital Management Startup 1.0 - 'loginid' SQLi Exploit Author: nu11secur1ty Vendor: https://github.com/kabirkhyrul Software: https://github.com/kabirkhyrul/HMS CVE-2022-23366 Description: The loginid and password parameters from Hospital Management Startup 1.0 appear to be...
Hospital Management Startup 1.0 SQL Injection
Title: Hospital Management Startup v1.0 remote SQL-Injections Author: nu11secur1ty Date: 02.10.2022 Vendor: https://github.com/kabirkhyrul Software: https://github.com/kabirkhyrul/HMS CVE-2022-23366 Description: The loginid and password parameters from Hospital Management Startup 1.0 appear to be...
CVE-2022-23366
creationtimestamp| type| source ---|---|--- 2022-01-22 02:15:33+00:00| seen| https://t.me/cibsecurity/36087...
CVE-2022-23366
HMS v1.0 was discovered to contain a SQL injection vulnerability via patientlogin.php...
CVE-2022-23366
CVE-2022-23366 affects HMS v1.0 with a SQL injection in patientlogin.php. The vulnerability is evidenced across multiple connected sources (Red Hat, CNVD, CNVD-like entries) and exploited publicly (Exploit-DB, PacketStorm), showing a login parameter (loginid) susceptible to time-based blind SQLi ...