High severity7.3NVD Advisory· Published May 24, 2026· Updated May 26, 2026
CVE-2026-9356
CVE-2026-9356
Description
A vulnerability has been found in SourceCodester Hospitals Patient Records Management System 1.0. This affects an unknown function of the file /admin/patients/manage_history.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =1.0
Patches
Vulnerability mechanics
References
5News mentions
1- Sourcecodester: 19 CVEs Across Six Products Disclosed in Three-Day BatchVypr Intelligence · May 26, 2026