A Time-Based SQL Injection vulnerability exists in Hospital Management System V4.0 which can allow an malicious user to dump database information via a crafted payload entered into the 'Admin Remark' parameter under the 'Contact Us Queries -> Unread Query' tab.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpgurukul hospital management system 4.0 |