2 matches found
CVE-2022-36242
Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/updatemedicine.php?id=...
CVE-2022-36242
Clinic's Patient Management System v1.0 is affected by an SQL Injection via /pms/update_medicine.php?id= (root cause: unsafely handled id parameter). The CVE entries (CVE-2022-36242) cite a high-severity impact (CVSS 3.1 base 9.8; Confidentiality, Integrity, Availability all High) with network ac...