2022-05-16 12:41:57
mitre
PUBLISHED
In HMS 1.0 when requesting appointment.php through POST, multiple parameters can lead to a SQL injection vulnerability.