CVE-2026-10185 – SourceCodester Hospitals Patient Records Management System Users.php save sql injection

CVE ID :CVE-2026-10185

Published : May 31, 2026, 2:16 p.m. | 15 minutes ago

Description :A weakness has been identified in SourceCodester Hospitals Patient Records Management System 1.0. Affected is an unknown function of the file /classes/Users.php?f=save. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-10191 – Tenda W12 httpd cgiWifiMacFilterSet stack-based overflow

CVE-2026-10190 – Tenda W12 Web Management httpd cgiSysWebTimeoutSet denial of service

CVE-2026-10189 – Tenda W12 httpd cgiSysTimeInfoSet stack-based overflow

CVE-2026-10193 – OFCMS ComnController ComnController.java query sql injection