CVE-2020-22174
PHPGurukul Hospital Management System v4.0 contains a SQL injection in hms\book-appointment.php that allows remote unauthenticated access to obtain sensitive database information. This is confirmed across multiple sources (RH, CNVD/CNNVD, CNVD, CVE records, and PT-2021-10739) with no published pa...