0.087 Low
EPSS
Percentile
94.5%
Blind SQL injection in contactus.php in doctor appointment system 1.0 allows an unauthenticated attacker to insert malicious SQL queries via lastname parameter.
packetstormsecurity.com/files/161641/Doctor-Appointment-System-1.0-SQL-Injection.html