CVE-2026-13542 | itsourcecode Hospital Management System 1.0 /doctorprofile.php doctorname sql injection

Inserito da Angelo Barbosa | Giu 28, 2026 | CVE

A vulnerability was found in itsourcecode Hospital Management System 1.0. It has been rated as critical. Affected is an unknown function of the file /doctorprofile.php. The manipulation of the argument doctorname leads to sql injection.

This vulnerability is traded as CVE-2026-13542. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-13542 | itsourcecode Hospital Management System 1.0 /doctorprofile.php doctorname sql injection

Post correlati

CVE-2026-7429 | Siteserver SSCMS 7.4.0 /api/stl/actions/dynamic cross site scripting

CVE-2024-43406 | LF-Edge ekuiper up to 1.14.1 sql injection (GHSA-r5ph-4jxm-6j9p)

CVE-2022-49396 | Linux Kernel up to 5.18.2 qcom-qmp devm_reset_control_get_exclusive Privilege Escalation

CVE-2024-32129 | Freshworks Freshdesk Plugin up to 2.3.4 on WordPress redirect