CNNVD-202602-1234 Information

CNNVD ID

CNNVD-202602-1234

Related CVE

CVE-2026-2134

• CNNVD Published: 2026-02-08

Description (Chinese)

PHPGurukul Hospital Management System是PHPGurukul公司的一套基于PHP和MySQL的医院管理系统。 PHPGurukul Hospital Management System 4.0版本存在SQL注入漏洞，该漏洞源于对文件/hms/admin/manage-doctors.php的参数ID的错误操作，可能导致SQL注入攻击。

Description (English)

PHPGurukul Hospitament System is a PHPGurukul-based hospital management system based on PHP and MySQL. PHPGurukul Hospital Management System 4.0 has an injection loophole in SQL, which stems from the mishandling of parameter ID of document/hms/admin/manage-doctors.php, which could lead to an attack on SQL.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

PHPGurukul

Published

2026-02-08

Last Modified

2026-02-24

References

https://vuldb.com/?id.344769 https://github.com/Shaon-Xis/PHPGurukul-HMS-SQL-Injection https://phpgurukul.com/ https://vuldb.com/?submit.747214 https://vuldb.com/?ctiid.344769 https://access.redhat.com/security/cve/cve-2026-2134