2 matches found
Patient Record Management System edit_upatient.php File SQL Injection Vulnerability
Patient Record Management System is a medical record management system. Patient Record Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the ID parameter of the /editupatient.php file. An attacker can exploi...
CVE-2025-4458
A vulnerability was found in code-projects Patient Record Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /editupatient.php. The manipulation of the argument ID leads to sql injection. The attack can be launched...