A vulnerability, which was classified as critical , was found in SourceCodester Hospitals Patient Records Management System 1.0 . Impacted is an unknown function of the file /admin/patients/view_history.php . The manipulation of the argument ID results in sql injection. This vulnerability is cataloged as CVE-2026-9342 . The attack may be launched remotely. Furthermore, there is an exploit available.