CVE-2021-27314

SQL injection in admin.php in doctor appointment system 1.0 allows an unauthenticated attacker to insert malicious SQL queries via username parameter at login page.

Date published : 2021-03-04

https://packetstormsecurity.com/files/161641/Doctor-Appointment-System-1.0-SQL-Injection.html