CNNVD-202510-857 Information

CNNVD ID

CNNVD-202510-857

Related CVE

CVE-2025-11319

• CNNVD Published: 2025-10-06

Description (Chinese)

Hospital-Management-System是Karthik个人开发者的一个医院管理系统。 Hospital-Management-System存在SQL注入漏洞，该漏洞源于对文件/delete.php中参数ai的错误操作，可能导致SQL注入攻击。

Description (English)

Hospital-Management-System is a hospital management system for Karthik personal developers. There is an SQL injection loophole in the Hopital-Management-System, which stems from an error in the parameter ai in the document/delete.php, which could lead to an SQL injection attack.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2025-10-06

Last Modified

2026-02-24

References

https://github.com/mhszed/Report/blob/main/SQL%20Injection%20Vulnerability%20in%20the%20Hospital-Management-System-Website%20Editor.docx https://vuldb.com/?ctiid.327200 https://vuldb.com/?id.327200 https://vuldb.com/?submit.664324