Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func3.php via the username1 and password2 parameters.
https://github.com/kishan0725/Hospital-Management-System
https://gist.github.com/celbahraoui/f3e2c9d9d015aa455949e3d3c4fdade6