CNNVD-202506-3105 Information

CNNVD ID

CNNVD-202506-3105

Related CVE

CVE-2025-6570

• CNNVD Published: 2025-06-24

Description (Chinese)

PHPGurukul Hospital Management System是PHPGurukul公司的一套基于PHP和MySQL的医院管理系统。 PHPGurukul Hospital Management System 4.0版本存在注入漏洞，该漏洞源于search.php文件对参数searchdata处理不当，可能导致SQL注入攻击。

Description (English)

PHPGurukul Hospitament System is a PHPGurukul-based hospital management system based on PHP and MySQL. PHPGurukul Hospital Management System 4.0 has an injection loophole, which stems from the improper handling of the parameter Seachdata in the search.php file, which could lead to an SQL injection attack.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

PHPGurukul

Published

2025-06-24

Last Modified

2026-02-24

References

https://github.com/Ant1sec-ops/HMS4.0-Avdisories/blob/main/Union-based-sqli-on-doctor-search/exploit.md https://vuldb.com/?submit.601698 https://vuldb.com/?ctiid.313742 https://phpgurukul.com/ https://vuldb.com/?id.313742 https://access.redhat.com/security/cve/cve-2025-6570