CVE-2025-4499

Name of the Vulnerable Software and Affected Versions code-projects Simple Hospital Management System version 1.0

Description A critical vulnerability was found in the Simple Hospital Management System. The issue affects the Add function of the Add Information component. Manipulation of the x[i].name and x[i].disease arguments leads to a stack-based buffer overflow. This attack must be approached locally, and the exploit has been disclosed to the public.

Recommendations For code-projects Simple Hospital Management System version 1.0, consider disabling the Add function of the Add Information component until a patch is available to prevent exploitation of the buffer overflow vulnerability. Restrict access to the Add Information component to minimize the risk of exploitation. Avoid using the x[i].name and x[i].disease arguments in the affected function until the issue is resolved.