2 matches found
CVE-2025-5857
The CVE-2025-5857 entry affects code-projects Patient Record Management System 1.0, where the /urinalysis_record.php script processes the itr_no parameter insecurely, allowing SQL injection. Root cause: improper handling of itr_no enables crafted queries; attack vector is network/remote with no u...
CVE-2025-5857 code-projects Patient Record Management System urinalysis_record.php sql injection
A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /urinalysisrecord.php. The manipulation of the argument itrno leads to sql injection. The attack may be initiated remotely. The exploi...