CVE-2026-13520
Last modified
CVE-2026-13520 is a medium-severity vulnerability rated 6.3/10 on the CVSS scale. A vulnerability was determined in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /appointmentapproval.php of the component Appointment Handler. EPSS estimates a 0.20% chance of exploitation in the next 30 days.
Description
A vulnerability was determined in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /appointmentapproval.php of the component Appointment Handler. This manipulation of the argument editid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
Source: CNA advisory (CVE.org). NVD analysis pending.
| Vendor | Product | Versions |
|---|---|---|
| itsourcecode | Hospital Management System | 1.0 |
References
Timeline
- Published
- Last Modified
- Status
- Deferred
Frequently Asked Questions
What is CVE-2026-13520?
How severe is CVE-2026-13520?
How do I fix CVE-2026-13520?
Related CVEs from 2026
- CVE-2026-13515A security vulnerability has been detected in Tenda JD12L 16…8.8
- CVE-2026-13516A vulnerability was detected in Tenda JD12L 16.03.53.23. The…8.8
- CVE-2026-13517A flaw has been found in Tenda JD12L 16.03.53.23. The impact…8.8
- CVE-2026-13518A vulnerability has been found in Tenda JD12L 16.03.53.23. T…8.8
- CVE-2026-13519A vulnerability was found in Tenda JD12L 16.03.53.23. This i…8.8
- CVE-2026-1352IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for…6.5
- CVE-2026-13521A vulnerability was identified in SourceCodester Class and E…7.3
- CVE-2026-13522A security flaw has been discovered in Investintech SlimPDFR…4.3
- CVE-2026-13523A weakness has been identified in GPAC up to 26.02.0. This a…3.3
- CVE-2026-13524A security vulnerability has been detected in CherryHQ cherr…5.6
- CVE-2026-13525A vulnerability was detected in CodeAstro Human Resource Man…6.3
- CVE-2026-13526A flaw has been found in SourceCodester Class and Exam Timet…7.3
Are you affected by CVE-2026-13520?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST
