Hospital Management System SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Hospital Management System version 4. The issue arises in the 'doctorsearch.php' file, specifically through the 'doctor_contact' parameter, which is not properly sanitized before being used in SQL queries. This flaw allows remote attackers to manipulate the database, potentially executing arbitrary code or disclosing sensitive information.

Impact

Exploitation of this vulnerability allows for SQL injection, with the potential to execute arbitrary SQL commands, manipulate database data, and in some cases, execute arbitrary code or access sensitive information, depending on the application's database handling and configuration.

Reproduction

To reproduce this vulnerability, send a request to 'doctorsearch.php' with a crafted 'doctor_contact' parameter that includes SQL injection payloads. The lack of proper input sanitization will allow the injected SQL code to be executed, demonstrating the SQL injection vulnerability.