A vulnerability classified as critical has been found in Online Clinic Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user leads to sql injection.
This vulnerability is uniquely identified as CVE-2024-40393. It is possible to initiate the attack remotely. There is no exploit available.