Name of the Vulnerable Software and Affected Versions:

Campcodes Hospital Management System version 1.0

Description:

A weakness has been identified in Campcodes Hospital Management System that allows for SQL injection. The issue is located in an unknown functionality of the file `/admin/` within the Admin Dashboard Login component. Manipulation of the `Password` argument can trigger the injection. The exploit has been made publicly available and could be exploited remotely.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.