CVE-2024-12969 Information

Description

A vulnerability which was classified as critical has been found in code-projects Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/index.php of the component Login. The manipulation of the argument username/password leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Reference

https://code-projects.org/ https://github.com/Rocky-Bull/myCVE/blob/main/Hospital_Management_System_SQLi.md https://vuldb.com/?ctiid.289334 https://vuldb.com/?id.289334 https://vuldb.com/?submit.469031