PT-2025-32295 · Unknown · Hospital Management System
Published
2025-08-07
·
Updated
2025-08-08
·
CVE-2023-41526
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Hospital Management System version 4
Description
The Hospital Management System contains multiple SQL injection flaws within the
func1.php file. These flaws are present through the username3 and password3 parameters.Recommendations
Apply input validation and sanitization to the
username3 and password3 parameters in the func1.php file.Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hospital Management System