CVE-2026-11514

MEDIUM WAF: High

CVSS 6.3 Published: 2026-06-08

CWE-89

A flaw has been found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /addpatient.php. This manipulation of the argument admissiontme causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used.

WAF Coverage Analysis

SQL Injection High WAF Coverage

OWASP: A03:2021 Injection

942xxx - SQL Injection

References

github.com
itsourcecode.com
vuldb.com
vuldb.com
vuldb.com
vuldb.com

Back to CVE Database