5 matches found
Sql injection
A vulnerability was found in SourceCodester Online Hospital Management System 1.0. It has been classified as critical. Affected is an unknown function of the file patientlogin.php. The manipulation of the argument loginid/password leads to sql injection. It is possible to launch the attack...
CVE-2023-4185 SourceCodester Online Hospital Management System patientlogin.php sql injection
A vulnerability was found in SourceCodester Online Hospital Management System 1.0. It has been classified as critical. Affected is an unknown function of the file patientlogin.php. The manipulation of the argument loginid/password leads to sql injection. It is possible to launch the attack...
Sql injection
HMS v1.0 was discovered to contain a SQL injection vulnerability via patientlogin.php...
CVE-2022-23366
HMS v1.0 was discovered to contain a SQL injection vulnerability via patientlogin.php...
CVE-2022-23366
CVE-2022-23366 affects HMS v1.0 with a SQL injection in patientlogin.php. The vulnerability is evidenced across multiple connected sources (Red Hat, CNVD, CNVD-like entries) and exploited publicly (Exploit-DB, PacketStorm), showing a login parameter (loginid) susceptible to time-based blind SQLi ...