messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL injection vulnerability, which allows low-privileged attackers to execute arbitrary SQL commands through a vulnerable parameter.Referenceshttps://github.com/judsonmitchell/ClinicCases/releaseshttps://cliniccases.com
