2 matches found
CVE-2026-14703
A vulnerability has been found in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /patientorder.php. Such manipulation of the argument editid leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and...
CVE-2026-14703
The CVE concerns itsourcecode Hospital Management System 1.0, where an SQL injection is possible in /patientorder.php via the editid parameter. Root cause: likely unsafely constructed SQL leading to data disclosure or modification. A remote attacker could exploit this (network access) and the att...