A vulnerability was found in Hospital Management System 1.0. It has been classified as critical. This affects an unknown part of the file his_doc_view_single_patien.php. The manipulation of the argument pat_number leads to sql injection.
This vulnerability is uniquely identified as CVE-2022-46497. The attack needs to be approached within the local network. There is no exploit available.