Hospital Management System SQL Injection Vulnerability

Multiple SQL injection vulnerabilities have been identified in Hospital Management System version 4. These vulnerabilities reside in the 'func1.php' file, specifically within the 'username3' and 'password3' parameters, which are not properly sanitized before being used in SQL queries. This lack of sanitation allows remote attackers to manipulate database queries, potentially leading to unauthorized data access or execution of arbitrary code.

Impact

Exploitation of these vulnerabilities could allow attackers to execute arbitrary code or disclose sensitive information by manipulating the application's database queries.

Reproduction

To reproduce this vulnerability, log into the Hospital Management System as a user. Navigate to the login or registration page where the 'username3' and 'password3' parameters are accepted. Input values that exploit the SQL injection vulnerability, such as those that include SQL syntax to manipulate the query execution. Submit the form and observe the application's response, which may indicate successful exploitation, such as unauthorized access or displayed database information.