SQL Injection exists in HealthNode Hospital Management System 1.0 via the id parameter to dashboard/Patient/info.php or dashboard/Patient/patientdetails.php.Referenceshttps://www.exploit-db.com/author/?a=8844https://www.exploit-db.com/exploits/46148
