Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Hospital Management System — Vulnerabilities & Security Advisories 60

All 60 CVE vulnerabilities found in Hospital Management System, with AI-generated Chinese analysis, references, and POCs.

This page is a vulnerability aggregation resource for the Hospital Management System, focusing on common weakness enumeration tags and known security defects. It collects data on critical security flaws affecting this specific healthcare software infrastructure, covering reports and advisories released from 2018 through early 2024. Here, security professionals can track vendor advisories to stay informed about emerging threats, understand the characteristics and impact of specific weakness classes within the medical domain, and look up a product's vulnerability history to assess long-term risk exposure. The aggregated content highlights how design flaws, improper input handling, and misconfigured access controls can compromise patient data integrity and system availability. By consolidating these findings, the resource aims to provide a comprehensive view of the threat landscape for hospital management platforms. Readers can analyze trends in reported issues to identify persistent security gaps or newly discovered attack vectors. This information supports both proactive mitigation strategies and reactive incident response efforts. The data serves as a vital reference for IT administrators, compliance officers, and security analysts responsible for maintaining the safety and reliability of healthcare information systems. Understanding these vulnerabilities is essential for ensuring regulatory compliance and protecting sensitive health records from unauthorized access or exploitation.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2026-6602 rickxy Hospital Management System his_admin_account.php unrestricted upload CWE-434 7.3 High2026-04-20
CVE-2026-2179 PHPGurukul Hospital Management System manage-users.php sql injection CWE-89 4.7 Medium2026-02-08
CVE-2026-2134 PHPGurukul Hospital Management System manage-doctors.php sql injection CWE-89 4.7 Medium2026-02-08
CVE-2026-1550 PHPGurukul Hospital Management System Admin Dashboard adminviews.py improper authorization CWE-285 6.3 Medium2026-01-28
CVE-2025-11609 code-projects Hospital Management System express-session hard-coded key CWE-321 3.7 Low2025-10-11
CVE-2025-9770 Campcodes Hospital Management System Admin Dashboard Login admin sql injection CWE-89 7.3 High2025-09-01
CVE-2025-9746 Campcodes Hospital Management System Edit Doctor Specialization edit-doctor-specialization.php cross site scripting CWE-79 2.4 Low2025-08-31
CVE-2025-8955 PHPGurukul Hospital Management System edit-doctor.php sql injection CWE-89 7.3 High2025-08-14
CVE-2025-8954 PHPGurukul Hospital Management System doctor-specilization.php sql injection CWE-89 7.3 High2025-08-14
CVE-2025-7604 PHPGurukul Hospital Management System user-login.php sql injection CWE-89 7.3 High2025-07-14
CVE-2025-7176 PHPGurukul Hospital Management System view-medhistory.php sql injection CWE-89 7.3 High2025-07-08
CVE-2025-6613 PHPGurukul Hospital Management System manage-patient.php cross site scripting CWE-79 3.5 Low2025-06-25
CVE-2025-6570 PHPGurukul Hospital Management System search.php sql injection CWE-89 6.3 Medium2025-06-24
CVE-2025-6339 ponaravindb Hospital Management System func3.php sql injection CWE-89 7.3 High2025-06-20
CVE-2025-5604 Campcodes Hospital Management System user-login.php sql injection CWE-89 7.3 High2025-06-04
CVE-2025-5603 Campcodes Hospital Management System registration.php sql injection CWE-89 7.3 High2025-06-04
CVE-2025-5602 Campcodes Hospital Management System registration.php sql injection CWE-89 7.3 High2025-06-04
CVE-2025-5584 PHPGurukul Hospital Management System POST Parameter edit-patient.php cross site scripting CWE-79 2.4 Low2025-06-04
CVE-2025-47631 WordPress Hospital Management System plugin <= 47.0(20-11-2023) - Privilege Escalation vulnerability CWE-266 8.8 High2025-05-23
CVE-2025-47663 WordPress Hospital Management System plugin <= 47.0(20-11-2023) - Arbitrary File Upload vulnerability CWE-434 9.9 Critical2025-05-23
CVE-2025-39357 WordPress Hospital Management System plugin <= 47.0(20-11-2023) - SQL Injection vulnerability CWE-89 8.5 High2025-05-19
CVE-2025-39380 WordPress Hospital Management System plugin <= 47.0(20-11-2023) - Arbitrary File Upload vulnerability CWE-434 10.0 Critical2025-05-19
CVE-2025-39386 WordPress Hospital Management System plugin <= 47.0(20-11-2023) - SQL Injection vulnerability CWE-89 9.3 Critical2025-05-19
CVE-2025-39393 WordPress Hospital Management System plugin <= 47.0(20-11-2023) - Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2025-05-19
CVE-2025-3206 code-projects Hospital Management System doctor-specilization.php sql injection CWE-89 6.3 Medium2025-04-04
CVE-2025-2664 CodeZips Hospital Management System suadpeted.php sql injection CWE-89 4.7 Medium2025-03-23
CVE-2024-12983 code-projects Hospital Management System Edit Doctor Details Page manage-doctors.php cross site scripting CWE-79 2.4 Low2024-12-27
CVE-2024-12976 CodeZips Hospital Management System staff.php sql injection CWE-89 7.3 High2024-12-27
CVE-2024-12969 code-projects Hospital Management System Login index.php sql injection CWE-89 7.3 High2024-12-26
CVE-2024-12947 Codezips Hospital Management System invo.php sql injection CWE-89 6.3 Medium2024-12-26

All 60 known CVE vulnerabilities affecting Hospital Management System with full Chinese analysis, references, and POCs where available.