CVE-2026-11512NVD

Vulnerability Summary

A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. This issue affects some unknown processing of the file /billing.php. The manipulation of the argument patientid leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.

Severity Level

MEDIUM(4.3)

Published Date

Jun 8, 2026

Last Modified

Jun 8, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.04%Probability

Root Weakness (CWE)

N/A

CVSS v3.1 Base Metrics

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionRequired

ScopeUnchanged

ConfidentialityNone

IntegrityLow

AvailabilityNone

External References

https://vuldb.com/vuln/369132
https://vuldb.com/vuln/369132/cti
https://vuldb.com/cve/CVE-2026-11512
https://vuldb.com/submit/836161
https://github.com/ltranquility/vuln_submit/issues/13
https://itsourcecode.com/

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2026-11512NVD

Vulnerability Summary

External References