Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func1.php via the username3 and password3 parameters.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 12 Aug 2025 08:00:00 +0000

Type Values Removed Values Added
First Time appeared Hospital Management System
Hospital Management System hospital Management System
Vendors & Products Hospital Management System
Hospital Management System hospital Management System

Mon, 11 Aug 2025 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Kishan0725
Kishan0725 hospital Management System
CPEs cpe:2.3:a:kishan0725:hospital_management_system:4.0:*:*:*:*:*:*:*
Vendors & Products Kishan0725
Kishan0725 hospital Management System

Fri, 08 Aug 2025 14:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-89
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 07 Aug 2025 18:00:00 +0000

Type Values Removed Values Added
Description Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func1.php via the username3 and password3 parameters.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-08-08T13:52:15.131Z

Reserved: 2023-08-30T00:00:00.000Z

Link: CVE-2023-41526

cve-icon Vulnrichment

Updated: 2025-08-08T13:52:03.392Z

cve-icon NVD

Status : Analyzed

Published: 2025-08-07T18:15:29.210

Modified: 2025-08-11T14:44:48.190

Link: CVE-2023-41526

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-08-12T07:56:31Z