2 matches found
CVE-2021-43628
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php...
CVE-2021-43628
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email parameter in hms-staff.php. The issue, documented across multiple sources (NVD/CNVD/CNNVD), indicates improper input handling that allows attackers to manipulate SQL queries. Root cause: unsafeguarded user ...