CVE-2022-2298 | SourceCodester Clinics Patient Management System 2.0 Login Page /pms/index.php user_name sql injection
A vulnerability has been found in SourceCodester Clinics Patient Management System 2.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /pms/index.php of the component Login Page. The manipulation of the argument user_name with the input admin' or '1'='1 leads to sql injection.
This vulnerability is known as CVE-2022-2298. The attack can be launched remotely. Furthermore, there is an exploit available.