Sfturing Hosp_Order SQL Injection Vulnerability in HospitalServiceImpl

A critical SQL injection vulnerability has been identified in the Sfturing Hosp_Order application, specifically in the HospitalServiceImpl.java file, within the findAllHosByCondition function. The vulnerability arises from improper handling of the hospitalName parameter, allowing for remote SQL injection attacks. This issue affects all versions of the application up to the commit 627f426331da8086ce8fff2017d65b1ddef384f8.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can manipulate SQL queries to the database. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database.

Reproduction

To reproduce this vulnerability, send a POST request to the '/ssm_pro/allHos/1' endpoint. Include a payload that injects SQL code into the 'hospitalName' parameter. The injected SQL should be crafted to exploit the application's SQL query handling, such as using SQL injection techniques to manipulate the query execution or extract database information.