High severity7.3NVD Advisory· Published May 24, 2026· Updated May 26, 2026
CVE-2026-9355
CVE-2026-9355
Description
A flaw has been found in SourceCodester Hospitals Patient Records Management System 1.0. The impacted element is an unknown function of the file /classes/Master.php?f=save_patient_history. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 1.0
Patches
Vulnerability mechanics
References
5News mentions
1- Sourcecodester: 19 CVEs Across Six Products Disclosed in Three-Day BatchVypr Intelligence · May 26, 2026