CVE-2024-46532
OpenHIS v1.0 is affected by a SQL Injection in the refund function of PayController.class.php. The root cause is unsanitized/external SQL statements, enabling an attacker to potentially execute arbitrary SQL commands and access sensitive data. Public references across CVE records (NVD/Red Hat/CNV...