CVE-2026-14730

Severity CVSS v4.0:
LOW
Type:
CWE-74 Injection
Publication date:
05/07/2026
Last modified:
05/07/2026

Description

A security flaw has been discovered in itsourcecode Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file /patientprofile.php. Performing a manipulation of the argument patientname results in sql injection. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks.