CVE-2026-13497 – itsourcecode Hospital Management System appointment.php sql injection

CVE ID :CVE-2026-13497

Published : June 28, 2026, 12:45 p.m. | 1 hour ago

Description :A vulnerability was determined in itsourcecode Hospital Management System 1.0. The impacted element is an unknown function of the file /appointment.php. This manipulation of the argument editid causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…