SQL injection vulnerability in modules/patient/mycare2x_pat_info.php in myCare2x allows remote attackers to execute arbitrary SQL commands via the lang parameter.Referenceshttp://secunia.com/advisories/49029https://exchange.xforce.ibmcloud.com/vulnerabilities/75390http://www.osvdb.org/81684
