CVE-2025-2869

Reflected Cross-Site Scripting XSS vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the id parameter in /manageuser.php...

CVE-2025-2870

Reflected Cross-Site Scripting XSS vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the page parameter in /patientside.php...

CVE-2025-2868

Reflected Cross-Site Scripting XSS vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the page parameter in /index.php...

Clinic Queuing System 跨站脚本漏洞

Clinic Queuing System is a clinic queuing system by the individual developer Carlo Montero. A cross-site scripting vulnerability exists in Clinic Queuing System version 1.0, which stems from a reflective cross-site scripting attack that could execute JavaScript code via a malicious URL...

PT-2024-15425 · Sourcecodester · Sourcecodester Clinic Queuing System

Name of the Vulnerable Software and Affected Versions: SourceCodester Clinic Queuing System version 1.0 Description: A critical issue affects the processing of the file /index.php, specifically the component GET Parameter Handler. The manipulation of the page argument leads to file inclusion. Thi...

PT-2024-15424 · Sourcecodester · Sourcecodester Clinic Queuing System

Name of the Vulnerable Software and Affected Versions: SourceCodester Clinic Queuing System version 1.0 Description: A critical issue has been found in the SourceCodester Clinic Queuing System, affecting the /LoginRegistration.php file. The manipulation of the formToken argument leads to...