VYPR
Unrated severityNVD Advisory· Published Jan 15, 2026· Updated Mar 5, 2026

Chikitsa Patient Management System 2.0.2 - 'plugin' Remote Code Execution (RCE) (Authenticated)

CVE-2021-47757

Description

Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability in the backup restoration functionality. Authenticated attackers can upload a modified backup zip file with a malicious PHP shell to execute arbitrary system commands on the server.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Chikitsa/Chikitsallm-create
    Range: <=2.0.2
  • dharashah/Chikitsa Patient Management Systemv5
    Range: 2.0.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.