COVID19 Testing Management System version 1.0 suffers from a remote SQL injection vulnerability leveraging the searchdata parameter on the patient-search-report.php page. This is a variant of the original discovery of SQL injection in this version as discovered by Rohit Burke in May of 2021.

You May Also Like

Sprite Spider emerging as one of the most destructive ransomware threat actors

At the recent SANS Cyber Threat Intelligence Summit, two CrowdStrike cybersecurity leads,…