CVE-2018-18704
The CVE-2018-18704 entry: PhpTpoint Pharmacy Management System contains a SQL injection in the index.php username parameter. According to CNVD-2019-23084, this can be exploited by a remote attacker to bypass the login page and authenticate as admin or another user. NVD data indicates a high to cr...