In the POST request of the appointment.php page of HMS v.0, there are SQL injection vulnerabilities in multiple parameters, and database information can be obtained through injection.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-05-16T12:51:32
Updated: 2024-08-03T06:40:46.959Z
Reserved: 2022-05-02T00:00:00
Link: CVE-2022-30012
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-05-16T13:15:07.923
Modified: 2022-05-24T17:04:39.297
Link: CVE-2022-30012
Redhat
No data.