CVE-2026-9564

Severity CVSS v4.0:
LOW
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
26/05/2026
Last modified:
26/05/2026

Description

A vulnerability was found in SourceCodester/oretnom23 Hospitals Patient Records Management System 1.0. The impacted element is an unknown function of the file /admin/?page=patients/view_patient. Performing a manipulation of the argument Remarks results in cross site scripting. Remote exploitation of the attack is possible. The exploit has been made public and could be used.