CVE-2023-5004 Information

Description

Hospital management system version 378c157 allows to bypass authentication.

This is possible because the application is vulnerable to SQLI.

Reference

https://fluidattacks.com/advisories/alcocer https://github.com/projectworldsofficial/hospital-management-system-in-php/