2 matches found
CVE-2022-32349
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=deletepatienthistory...
CVE-2022-32349
CVE-2022-32349 affects Hospital’s Patient Records Management System v1.0. The vulnerability is a SQL injection in the /hprms/classes/Master.php?f=delete_patient_history endpoint, caused by lack of input validation on externally supplied SQL. Other connected sources corroborate a SQL injection fla...