CVE-2026-11501 – SourceCodester Hospitals Patient Records Management System Master.php save_patient sql injection

CVE ID :CVE-2026-11501

Published : June 8, 2026, 10:16 a.m. | 16 minutes ago

Description :A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This issue affects some unknown processing of the file /classes/Master.php?f=save_patient. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-50752 – Certificate Validation Bypass in VPN Site-to-Site Connections Using IKEv1

CVE-2026-50751 – User Authentication Bypass in VPN Remote Access and Mobile Access

CVE-2026-47430 – Cordova Plugin InAppBrowser: iOS: Arbitrary Cordova callback IDs can be dispatched without validation from InAppBrowser WebViews

CVE-2026-3011 – Recipe Card Blocks Lite