GCVE - cpe:2.3:a:anujk305:hospital_management

Approved changes feed: RSS · Atom

cpe:2.3:a:anujk305:hospital_management_system:4.0:*:*:*:*:*:*:*

part: a version: 4.0 update: *

Vendor	Anujk305 (`5f6509d4-4e2f-53ca-a159-19c904ee1ea7`)
Product	Hospital Management System (`3deea0ca-90fb-5e9c-a417-c82ee863e196`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-6613`	vulnerable	2026-06-08 07:43:15.686674	PHPGurukul Hospital Management System manage-patient.php cross site scripting LOW (3.5) A vulnerability classified as problematic was found in PHPGurukul Hospital Management System 4.0. Affected by this vulnerability is an unknown functionality of the file /doctor/manage-patient.php. The manipulation of the argument Name leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Published: 2025-06-25T09:25:49.562Z Updated: 2025-06-25T13:40:06.947Z Open on db.gcve.eu Reference links https://vuldb.com/?id.313831 https://vuldb.com/?ctiid.313831 https://vuldb.com/?submit.602005 https://github.com/Vanshdhawan188/Stored-XSS-Hospital-Management/blob/main/Stored-XSS-Hospital-Management.md https://phpgurukul.com/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-6570`	vulnerable	2026-06-08 07:43:15.481484	PHPGurukul Hospital Management System search.php sql injection MEDIUM (6.3) A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital Management System 4.0. Affected by this issue is some unknown functionality of the file /doctor/search.php. The manipulation of the argument searchdata leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Published: 2025-06-24T15:31:06.365Z Updated: 2025-06-25T13:41:30.933Z Open on db.gcve.eu Reference links https://vuldb.com/?id.313742 https://vuldb.com/?ctiid.313742 https://vuldb.com/?submit.601698 https://github.com/Ant1sec-ops/HMS4.0-Avdisories/blob/main/Union-based-sqli-on-doctor-search/exploit.md https://phpgurukul.com/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-5584`	vulnerable	2026-06-08 07:37:25.215349	PHPGurukul Hospital Management System POST Parameter edit-patient.php cross site scripting LOW (2.4) A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been classified as problematic. Affected is an unknown function of the file /doctor/edit-patient.php?editid=2 of the component POST Parameter Handler. The manipulation of the argument patname leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Published: 2025-06-04T10:00:20.873Z Updated: 2025-06-04T13:15:04.050Z Open on db.gcve.eu Reference links https://vuldb.com/?id.311046 https://vuldb.com/?ctiid.311046 https://vuldb.com/?submit.588828 https://github.com/Ant1sec-ops/Hospital-management-Systemv4.0-Stored-XSS/blob/main/stored-xss-exploit.md https://phpgurukul.com/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Anuj Kumar Hospital Management System 4.0

PURL mappings

Vulnerability references

Contribute