CVE-2026-14659

A vulnerability has been found in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /patientappointment.php. Such manipulation of the argument patiente leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Configurations

No configuration.

History

04 Jul 2026, 23:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-07-04 23:16

Updated : 2026-07-06 19:16


NVD link : CVE-2026-14659

Mitre link : CVE-2026-14659

CVE.ORG link : CVE-2026-14659


JSON object : View

Products Affected

No product.

CWE
CWE-74

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')