CVE-2026-6602 in Hospital Management Systeminformación

Resumen

por MITRE • 2026-04-20

A vulnerability was found in rickxy Hospital Management System up to 88a4290d957dc5bdde8a56e5ad451ad14f7f90f4. Affected is an unknown function of the file /backend/admin/his_admin_account.php. The manipulation of the argument ad_dpic results in unrestricted upload. The attack can be executed remotely. The exploit has been made public and could be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgación

2026-04-20

Moderación

aceptado

Artículo

VDB-358237

CPE

listo

CWE

CWE-434 (confirmado)

Explotación

Descargar

CVSS

7.3 (VulDB)

EPSS

0.00018

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-6602
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-6602
CVE Details	https://www.cvedetails.com/cve/CVE-2026-6602/

◂ Anterior Visión De Conjunto Próximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!