CVE-2026-14773
MEDIUM
NVD
CVSS Score
6.3
Severity
MEDIUM
Published
Jul 05, 2026
Vendor
unknown
Description
A vulnerability was found in itsourcecode Hospital Management System 1.0. This affects an unknown function of the file /payment.php. The manipulation of the argument patientid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used.