CNNVD-202601-4633 Information
CNNVD ID
CNNVD-202601-4633
Related CVE
- CNNVD Published: 2026-01-28
Description (Chinese)
PHPGurukul Hospital Management System是PHPGurukul公司的一套基于PHP和MySQL的医院管理系统。 PHPGurukul Hospital Management System 1.0版本存在授权问题漏洞,该漏洞源于对文件/hms/hospital/docappsystem/adminviews.py的错误操作,可能导致授权不当。
Description (English)
PHPGurukul Hospitament System is a PHPGurukul-based hospital management system based on PHP and MySQL. There is a mandate gap in version 1.0 of PHPGurukul Hospital Management System, which stems from the mishandling of documents/hms/hospital/docappsystem/adminviews.py, which may lead to inappropriate authorization.
Hazard Level
High
Vulnerability Type
授权问题
Affected Vendor
PHPGurukul
Published
2026-01-28
Last Modified
2026-02-24
References
https://github.com/rsecroot/Hospital-Management-System/blob/main/Broken%20Access%20Control.md https://phpgurukul.com/ https://vuldb.com/?ctiid.343246 https://vuldb.com/?id.343246 https://vuldb.com/?submit.739837
Share on: