Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Hospital Management System — Vulnerabilities & Security Advisories 76

All 76 CVE vulnerabilities found in Hospital Management System, with AI-generated Chinese analysis, references, and POCs.

This page details security vulnerabilities associated with the Hospital Management System product, categorized by weakness types and specific vendor advisories. It aggregates reported security flaws found within this critical healthcare infrastructure software, focusing on how these issues impact data integrity and patient safety in clinical environments. The collection covers a comprehensive range of vulnerability classes, including authentication bypasses, insecure direct object references, and cross-site scripting flaws that have been publicly disclosed or privately reported to the vendor. The time range spans from the initial release of the system through the most recent patches, providing a historical perspective on how the software’s security posture has evolved over time. This chronological approach allows security professionals to see how quickly threats were identified and remediated by the development team. Readers can use this resource to track a vendor's advisories and monitor the timeline of security updates for the Hospital Management System. It also helps users understand a weakness class by seeing real-world examples of how specific flaw categories manifest in medical software. Additionally, one can look up a product's vulnerability history to assess the overall reliability of the system and identify recurring patterns in security failures. This information is essential for risk assessment, compliance auditing, and making informed decisions about software procurement and patch management in healthcare settings. By centralizing this data, the page supports better security hygiene and helps administrators prioritize mitigation efforts based on historical precedents and current threat landscapes.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2026-13579 itsourcecode Hospital Management System patientchangepassword.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13578 itsourcecode Hospital Management System patientdetail.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13572 itsourcecode Hospital Management System insertbillingrecord.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13548 itsourcecode Hospital Management System doctortimings.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13542 itsourcecode Hospital Management System doctorprofile.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13541 itsourcecode Hospital Management System doctorchangepassword.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13532 itsourcecode Hospital Management System departmentDoctor.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13531 itsourcecode Hospital Management System department.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13530 itsourcecode Hospital Management System Appointment appointmentdetail.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13520 itsourcecode Hospital Management System Appointment appointmentapproval.php sql injection CWE-89 6.3 Medium2026-06-29
CVE-2026-13497 itsourcecode Hospital Management System appointment.php sql injection CWE-89 6.3 Medium2026-06-28
CVE-2026-13496 itsourcecode Hospital Management System ajaxmedicine.php sql injection CWE-89 6.3 Medium2026-06-28
CVE-2026-13495 itsourcecode Hospital Management System adminprofile.php sql injection CWE-89 4.7 Medium2026-06-28
CVE-2026-11514 itsourcecode Hospital Management System addpatient.php sql injection CWE-89 6.3 Medium2026-06-08
CVE-2026-11513 itsourcecode Hospital Management System adminaccount.php sql injection CWE-89 6.3 Medium2026-06-08
CVE-2026-11512 itsourcecode Hospital Management System billing.php cross site scripting CWE-79 4.3 Medium2026-06-08
CVE-2026-6602 rickxy Hospital Management System his_admin_account.php unrestricted upload CWE-434 7.3 High2026-04-20
CVE-2026-2179 PHPGurukul Hospital Management System manage-users.php sql injection CWE-89 4.7 Medium2026-02-08
CVE-2026-2134 PHPGurukul Hospital Management System manage-doctors.php sql injection CWE-89 4.7 Medium2026-02-08
CVE-2026-1550 PHPGurukul Hospital Management System Admin Dashboard adminviews.py improper authorization CWE-285 6.3 Medium2026-01-28
CVE-2025-11609 code-projects Hospital Management System express-session hard-coded key CWE-321 3.7 Low2025-10-11
CVE-2025-9770 Campcodes Hospital Management System Admin Dashboard Login admin sql injection CWE-89 7.3 High2025-09-01
CVE-2025-9746 Campcodes Hospital Management System Edit Doctor Specialization edit-doctor-specialization.php cross site scripting CWE-79 2.4 Low2025-08-31
CVE-2025-8955 PHPGurukul Hospital Management System edit-doctor.php sql injection CWE-89 7.3 High2025-08-14
CVE-2025-8954 PHPGurukul Hospital Management System doctor-specilization.php sql injection CWE-89 7.3 High2025-08-14
CVE-2025-7604 PHPGurukul Hospital Management System user-login.php sql injection CWE-89 7.3 High2025-07-14
CVE-2025-7176 PHPGurukul Hospital Management System view-medhistory.php sql injection CWE-89 7.3 High2025-07-08
CVE-2025-6613 PHPGurukul Hospital Management System manage-patient.php cross site scripting CWE-79 3.5 Low2025-06-25
CVE-2025-6570 PHPGurukul Hospital Management System search.php sql injection CWE-89 6.3 Medium2025-06-24
CVE-2025-6339 ponaravindb Hospital Management System func3.php sql injection CWE-89 7.3 High2025-06-20

All 76 known CVE vulnerabilities affecting Hospital Management System with full Chinese analysis, references, and POCs where available.