CVE-2022-30012

In the POST request of the appointment.php page of HMS v.0, there are SQL injection vulnerabilities in multiple parameters, and database information can be obtained through injection. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt