33 matches found
EUVD-2025-15559
Malicious code in bioql PyPI...
EUVD-2025-15570
Malicious code in bioql PyPI...
EUVD-2025-15564
Malicious code in bioql PyPI...
EUVD-2022-38920
Malicious code in bioql PyPI...
CVE-2022-36203
Doctor's Appointment System 1.0 is vulnerable to Cross Site Scripting XSS via the admin panel. In addition, it leads to takeover the administrator account by stealing the cookie via XSS...
CVE-2025-4818
A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/delete-doctor.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The attac...
CVE-2025-4817
A vulnerability was found in Sourcecodester Doctor's Appointment System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/delete-appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The...
CVE-2025-4816
A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. It is possible to...
CVE-2025-4818
A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/delete-doctor.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The attac...
CVE-2025-4818 SourceCodester Doctor's Appointment System GET Parameter delete-doctor.php sql injection
A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/delete-doctor.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The attac...
CVE-2025-4818 SourceCodester Doctor's Appointment System GET Parameter delete-doctor.php sql injection
A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/delete-doctor.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The attac...
CVE-2025-4818
The CVE-2025-4818 entry affects SourceCodester Doctor’s Appointment System 1.0. A vulnerability exists in the GET Parameter Handler for /admin/delete-doctor.php where manipulating the ID argument leads to SQL injection. Exploitation is described as remote, with exploits disclosed publicly. Multip...
CVE-2025-4816
A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. It is possible to...
CVE-2025-4817
A vulnerability was found in Sourcecodester Doctor's Appointment System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/delete-appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The...
CVE-2025-4817 Sourcecodester Doctor's Appointment System GET Parameter delete-appointment.php sql injection
A vulnerability was found in Sourcecodester Doctor's Appointment System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/delete-appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The...
CVE-2025-4817 Sourcecodester Doctor's Appointment System GET Parameter delete-appointment.php sql injection
A vulnerability was found in Sourcecodester Doctor's Appointment System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/delete-appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. The...
CVE-2025-4817
The CVE-2025-4817 entry concerns Sourcecodester Doctor's Appointment System 1.0, where the vulnerability affects the code path handling the GET parameter in /admin/delete-appointment.php. The root cause is improper handling/manipulation of the ID parameter, enabling SQL injection. Impact is high/...
CVE-2025-4816 SourceCodester Doctor's Appointment System GET Parameter appointment.php sql injection
A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. It is possible to...
CVE-2025-4816 SourceCodester Doctor's Appointment System GET Parameter appointment.php sql injection
A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. It is possible to...
CVE-2025-4816
CVE-2025-4816 concerns SourceCodester Doctor’s Appointment System 1.0, where the GET parameter handler for the file /admin/appointment.php has an improper handling of the ID parameter, enabling SQL injection. Multiple connected records state that manipulating the ID can be exploited remotely and ...