2 matches found
CVE-2022-25491
HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in appointment.php...
CVE-2022-25491
CVE-2022-25491 affects HMS v1.0. A SQL injection vulnerability exists in the editid parameter of appointment.php. Root cause: unsafely handled input enabling arbitrary SQL execution. Exploitation details are not provided in the connected documents. CVSS‑3.1 base score 7.5 (HIGH) with Network atta...