A vulnerability marked as critical has been reported in itsourcecode Hospital Management System 1.0. This affects an unknown part of the file /patviewprescription.php. The manipulation of the argument delid leads to sql injection.
This vulnerability is referenced as CVE-2026-15536. Remote exploitation of the attack is possible. Furthermore, an exploit is available.