CVE-2020-22166
The CVE-2020-22166 entry concerns the PHPGurukul Hospital Management System (HM S) version 4.0, where a SQL injection exists in the \hms\forgot-password.php. The vulnerability allows remote unauthenticated attackers to retrieve sensitive database information. Multiple connected sources confirm th...