CVE-2020-22165 PoC — PHPGurukul Hospital Management System SQL注入漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-22165.yaml

Associated Vulnerability

Title:PHPGurukul Hospital Management System SQL注入漏洞 (CVE-2020-22165)
Description:PHPGurukul Hospital Management System是一套基于PHP和MySQL的医院管理系统。 PHPGurukul Hospital Management System 4.0 的hmsuser-login.php中存在SQL注入漏洞。该漏洞允许未经身份验证的远程用户利用该漏洞获取数据库敏感信息。

Description

PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\user-login.php. Remote unauthenticated users can exploit the vulnerability to obtain sensitive database information.

File Snapshot


 id: CVE-2020-22165

info:
  name: PHPGurukul Hospital Management System 4.0 - SQL Injection
  author

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.