Description
A vulnerability was identified in itsourcecode Hospital Management System 1.0. This affects an unknown part of the file /patviewprescription.php. The manipulation of the argument delid leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
Problem types
Product status
Timeline
| 2026-07-12: | Advisory disclosed |
| 2026-07-12: | VulDB entry created |
| 2026-07-12: | VulDB entry last update |
Credits
in2io3jgeiow (VulDB User)
References
vuldb.com/vuln/377886 (VDB-377886 | itsourcecode Hospital Management System patviewprescription.php sql injection)
vuldb.com/vuln/377886/cti (VDB-377886 | CTI Indicators (IOB, IOC, TTP, IOA))
vuldb.com/cve/CVE-2026-15536 (CVE-2026-15536 | CVE Analysis and Report)
vuldb.com/submit/855008 (Submit #855008 | itsourcecode Hospital Management System V1.0 SQL Injection)
github.com/ltranquility/submit_vuln/issues/7
itsourcecode.com/