CVE-2026-16009
MEDIUM
NVD
CVSS Score
6.3
Severity
MEDIUM
Published
Jul 17, 2026
Vendor
unknown
Description
A vulnerability was detected in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /prescriptionorderdetail.php. The manipulation of the argument delid results in sql injection. The attack can be launched remotely. The exploit is now public and may be used.