Blind SQL Injection Vulnerability in Contactus.php of Doctor Appointment System 1.0

Blind SQL Injection Vulnerability in Contactus.php of Doctor Appointment System 1.0

CVE-2021-27316 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Blind SQL injection in contactus.php in doctor appointment system 1.0 allows an unauthenticated attacker to insert malicious SQL queries via lastname parameter.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.