CVE-2026-13542

The CVE-2026-13542 entry concerns itsourcecode Hospital Management System 1.0. Affected is an unknown function in the file /doctorprofile.php where manipulation of the doctorname parameter enables SQL injection. The vulnerability can be triggered remotely, with public exploit disclosure reported ...

CVE-2026-13520

The CVE describes a SQL injection in itsourcecode Hospital Management System v1.0, affecting the file /appointmentapproval.php (component: Appointment Handler). The vulnerability is triggered by manipulating the editid parameter, enabling remote exploitation. Exploit evidence is indicated as publ...

CVE-2026-11513 itsourcecode Hospital Management System adminaccount.php sql injection

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

itsourcecode Hospital Management System 注入漏洞

itsourcecode Hospital Management System is an open-source hospital management system developed by itsourcecode. Version 1.0 of itsourcecode Hospital Management System has a vulnerability related to SQL injection, which stems from the handling of the admissiontime parameter in the addpatient.php...