SourceCodester Hospitals Patient Records Management System page room

4.8 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was detected in SourceCodester Hospitals Patient Records Management System 1.0. This issue affects some unknown processing of the file /admin/?page=room_types. Performing a manipulation of the argument room results in cross site scripting. The attack is possible to be carried out remotely. The exploit is now public and may be used.

Basic Information

ID CVE-2026-11468

Source VulDB

Published Jun 7, 2026 at 23:30

Affected Product

Vendor SourceCodester

Product Hospitals Patient Records Management System

Version 1.0

Affected Versions SourceCodester Hospitals Patient Records Management System 1.0

CWE Classification

CWE-79 CWE-94

References

{
    "lastseen": "",
    "description": "A vulnerability was detected in SourceCodester Hospitals Patient Records Management System 1.0. This issue affects some unknown processing of the file /admin/?page=room_types. Performing a manipulation of the argument room results in cross site scripting. The attack is possible to be carried out remotely. The exploit is now public and may be used.",
    "published": "2026-06-07T23:30:10.614Z",
    "modified": "2026-06-07T23:30:10.614Z",
    "type": "cve",
    "title": "SourceCodester Hospitals Patient Records Management System page room_types cross site scripting",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/369088\nhttps://vuldb.com/vuln/369088/cti\nhttps://vuldb.com/cve/CVE-2026-11468\nhttps://vuldb.com/submit/833776\nhttps://github.com/jqr1449186277/CVE/issues/2\nhttps://www.sourcecodester.com/",
    "id": "CVE-2026-11468",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79",
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "SourceCodester Hospitals Patient Records Management System 1.0",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Hospitals Patient Records Management System",
    "version": "1.0",
    "vendor": "SourceCodester",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

SourceCodester Hospitals Patient Records Management System page room_types cross site scripting_CVE-2026-11468