CVE-2026-13496

CVE-2026-13496 affects itsourcecode Hospital Management System 1.0. The vulnerability is a SQL injection in the /ajaxmedicine.php file, triggered by manipulating the medicineid parameter. This can be exploited remotely, and public exploit code exists. The exact vulnerable function within ajaxmedi...

EUVD-2026-39994

A vulnerability was found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /ajaxmedicine.php. The manipulation of the argument medicineid results in sql injection. It is possible to launch the attack remotely. The exploit has been made public...

EUVD-2022-30161

Malicious code in bioql PyPI...

CVE-2022-25492

HMS v1.0 was discovered to contain a SQL injection vulnerability via the medicineid parameter in ajaxmedicine.php...

Sql injection

HMS v1.0 was discovered to contain a SQL injection vulnerability via the medicineid parameter in ajaxmedicine.php...

CVE-2022-25492

CVE-2022-25492 (HMS v1.0) has a SQL injection flaw in the ajaxmedicine.php medicineid parameter. The vulnerability is documented with high/severe impact: CVSS 3.1 base score 9.8 (NETWORK, LOW attack complexity, NO privileges, UI=NONE, S=UNCHANGED; confidentiality, integrity, and availability impa...