A flaw has been found in code-projects Online Hospital Management System 1.php
The Online Hospital Management System has a SQL injection vulnerability in the login_1.php file, allowing attackers to execute arbitrary SQL queries. This can be exploited by manipulating the 'Username' argument, potentially leading to data breaches or unauthorized access. The vulnerability is remotely exploitable.
A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the function login_user of the file login_1.php. Executing a manipulation of the argument Username can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used.
Organizations using the Online Hospital Management System are at high risk of SQL injection attacks, potentially leading to data breaches or unauthorized access to sensitive medical information.
Remediation Recommended
This vulnerability carries significant risk. Schedule patching in your next cycle.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
0
Affected Products
6
References
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Exploitability
Impact