CVE-2026-7631: code-projects Online Hospital Management System Registration improper authorization

Published May 2, 2026
·
Updated

A vulnerability was found in code-projects Online Hospital Management System 1.0. The impacted element is an unknown function of the component Registration Handler. The manipulation of the argument Username results in improper authorization. The attack can be executed remotely. The exploit has been made public and could be used.

Affected Software

1 affected component
Code-projects Online Hospital Management System=1.0

Event History

May 2, 2026
CVE Published
via MITRE·01:30 PM
Data Sourced
via MITRE·01:30 PM
DescriptionSeverityWeakness
Data Sourced
via NVD·02:16 PM
DescriptionSeverityWeakness
Jun 16, 58320
Event
via FIRST·02:14 PM
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2026-7631?

The severity of CVE-2026-7631 is classified as critical due to the improper authorization in the Registration Handler component.

2

How do I fix CVE-2026-7631?

To fix CVE-2026-7631, ensure proper authorization checks are implemented for the Username argument in the Registration Handler.

3

What systems are affected by CVE-2026-7631?

CVE-2026-7631 affects version 1.0 of the code-projects Online Hospital Management System.

4

What type of vulnerability is CVE-2026-7631?

CVE-2026-7631 is an improper authorization vulnerability that can lead to unauthorized access.

5

Is there an exploit available for CVE-2026-7631?

Details regarding exploit availability for CVE-2026-7631 may vary, but it is advisable to implement security measures promptly to avoid potential attacks.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203