PT-2026-7011 · Phpgurukul · Phpgurukul Hospital Management System
Yan1451
·
Published
2026-02-08
·
Updated
2026-02-08
·
CVE-2026-2179
CVSS v3.1
7.2
High
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
PHPGurukul Hospital Management System version 4.0
Description
A flaw exists in PHPGurukul Hospital Management System version 4.0 that allows for remote SQL injection. The issue is located in the file '/admin/manage-users.php' and involves manipulation of the
ID argument. The exploit for this issue has been publicly disclosed.Recommendations
Apply a fix for PHPGurukul Hospital Management System version 4.0 to address the SQL injection issue in the '/admin/manage-users.php' file.
Exploit
Fix
SQL injection
Special Elements Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Phpgurukul Hospital Management System