CVE-2020-5192: SQL Injection
First published: Mon Jan 06 2020(Updated: )
PHPGurukul Hospital Management System in PHP v4.0 suffers from multiple SQL injection vulnerabilities: multiple pages and parameters are not validating user input, and allow for the application's database and information to be fully compromised.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHPGurukul Hospital Management System in PHP | =4.0 | |
| PHPGURUKUL Hospital Management System | =4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-5192?
CVE-2020-5192 refers to multiple SQL injection vulnerabilities in PHPGurukul Hospital Management System in PHP v4.0.
What is the severity of CVE-2020-5192?
CVE-2020-5192 has a severity rating of 8.8 (high).
How does CVE-2020-5192 affect PHPGurukul Hospital Management System?
CVE-2020-5192 allows for multiple SQL injection vulnerabilities in PHPGurukul Hospital Management System v4.0.
Where can I find more information about CVE-2020-5192?
You can find more information about CVE-2020-5192 at the following references: [link 1](https://phpgurukul.com/hospital-management-system-in-php/) and [link 2](https://www.exploit-db.com/exploits/47840).
How can I fix the SQL injection vulnerabilities in PHPGurukul Hospital Management System v4.0?
To fix the SQL injection vulnerabilities in PHPGurukul Hospital Management System v4.0, it is recommended to validate and sanitize user input in multiple pages and parameters.
- collector/nvd-index
- collector/nvd-api
- vendor/phpgurukul
- canonical/phpgurukul hospital management system in php
- version/phpgurukul hospital management system in php/4.0
- canonical/phpgurukul hospital management system
- version/phpgurukul hospital management system/4.0