Code Projects · Code-Projects Hospital Management System · CVE-2024-10350
**Name of the Vulnerable Software and Affected Versions**
code-projects Hospital Management System version 1.0
**Description**
A critical issue has been identified, affecting the /admin/add-doctor.php file. The manipulation of the `docname` argument leads to SQL injection. This issue can be exploited remotely.
**Recommendations**
For code-projects Hospital Management System version 1.0, consider restricting access to the /admin/add-doctor.php file until a fix is available. As a temporary workaround, avoid using the `docname` argument in the affected file to minimize the risk of exploitation.