## https://sploitus.com/exploit?id=CNVD-2022-48760
Sourcecodester Hospital Patient Records Management System is a web-based application that provides hospitals with an automated platform to store and manage their patient records. sourcecodester Hospital Patient Records Management System is vulnerable to SQL injection, which originates from /hprms/admin/room_types/view_room_type.php?id=The page lacks validation for external input SQL statements, which could be exploited by attackers to execute illegal SQL commands to steal sensitive database data.