CVE-2026-14730
MEDIUM
NVD
CVSS Score
6.3
Severity
MEDIUM
Published
Jul 05, 2026
Vendor
unknown
Description
A security flaw has been discovered in itsourcecode Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file /patientprofile.php. Performing a manipulation of the argument patientname results in sql injection. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks.