CVE-2026-10184
HIGH NVDCVSS Score
7.3
Severity
HIGH
Source
NVD
Published
May 31, 2026
Description
A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This impacts an unknown function of the file /classes/Users.php?f=delete. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been released to the public and may be used for attacks.