CVE-2022-38637

Name of the Vulnerable Software and Affected Versions Hospital Management System version 1.0

Description The issue is related to multiple SQL injection vulnerabilities. These vulnerabilities can be exploited via the Username and Password parameters on the Login page, specifically the '/login' API endpoint.

Recommendations For Hospital Management System version 1.0, consider temporarily disabling the login functionality until a patch is available. Restrict access to the login page to minimize the risk of exploitation. Avoid using the Username and Password parameters in the affected login endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.