CVE-2026-13530 | itsourcecode Hospital Management System 1.0 Appointment /appointmentdetail.php editid sql injection

Inserito da Angelo Barbosa | Giu 28, 2026 | CVE

A vulnerability identified as critical has been detected in itsourcecode Hospital Management System 1.0. This impacts an unknown function of the file /appointmentdetail.php of the component Appointment Handler. The manipulation of the argument editid leads to sql injection.

This vulnerability is uniquely identified as CVE-2026-13530. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-13530 | itsourcecode Hospital Management System 1.0 Appointment /appointmentdetail.php editid sql injection

Post correlati

CVE-2025-5077 | Campcodes Online Shopping Portal 1.0 edit-subcategory.php Category sql injection

CVE-2024-47071 | FreePBX OSS Endpoint Manager up to 14.0.3 Module path traversal

CVE-2024-25300 | Redaxo 5.15.1 Template Section Name cross site scripting

CVE-2023-48116 | SmarterTools SmarterMail prior 16.x Build 8747 Calendar Appointment cross site scripting