CVE-2026-14703
MEDIUM
NVD
CVSS Score
6.3
Severity
MEDIUM
Published
Jul 05, 2026
Vendor
unknown
Description
A vulnerability has been found in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /patientorder.php. Such manipulation of the argument editid leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.