CNNVD-202601-2633 Information
Jan 15, 2026
cve
CNNVD ID
CNNVD-202601-2633
Related CVE
- CNNVD Published: 2026-01-15
Description (Chinese)
Chikitsa是Sanskruti Technologies个人开发者的一个病人管理系统。 Chikitsa 2.0.2版本存在代码问题漏洞,该漏洞源于模块上传功能,可能导致经过身份验证的攻击者上传恶意PHP插件并执行远程代码。
Description (English)
Chikitsa is a patient management system for Sanskruti Technologies personal developers. Chikitsa version 2.0.2 has a code problem loophole, which stems from the module upload function and may lead to the uploading of malicious PHP plugins and the implementation of remote codes by the identified assailants.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
个人开发者
Published
2026-01-15
Last Modified
2026-02-24
References
https://github.com/sanskruti-technologies/chikitsa https://sourceforge.net/projects/chikitsa/ https://www.chikitsa.io/ https://www.exploit-db.com/exploits/50571
Patch
https://sourceforge.net/projects/chikitsa/
Share on: