Skip to main content

Online Hospital Management System CVE-2026-7631

| EUVD-2026-26793 LOW
Improper Authorization (CWE-285)
2026-05-02 VulDB
Authentication Bypass
2.1
CVSS 4.0

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

7
Analysis Generated
May 02, 2026 - 14:30 vuln.today
Severity Changed
May 02, 2026 - 14:22 NVD
MEDIUM LOW
CVSS changed
May 02, 2026 - 14:22 NVD
5.4 (MEDIUM) 2.1 (LOW)
PoC Detected
May 02, 2026 - 14:16 vuln.today
Public exploit code
EUVD ID Assigned
May 02, 2026 - 14:00 euvd
EUVD-2026-26793
Analysis Generated
May 02, 2026 - 14:00 vuln.today
CVE Published
May 02, 2026 - 13:30 nvd
LOW 2.1

DescriptionNVD

A vulnerability was found in code-projects Online Hospital Management System 1.0. The impacted element is an unknown function of the component Registration Handler. The manipulation of the argument Username results in improper authorization. The attack can be executed remotely. The exploit has been made public and could be used.

AnalysisAI

Improper authorization in code-projects Online Hospital Management System 1.0 allows authenticated remote attackers to manipulate the Username parameter in the Registration Handler, bypassing access controls and modifying user authorization. The vulnerability requires valid authentication credentials but results in integrity impact to user accounts. …

Sign in for full analysis, threat intelligence, and remediation guidance.

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Sign in - Free

Share

CVE-2026-7631 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy