2 matches found
CVE-2026-3981
The CVE-2026-3981 entry concerns itsourcecode Online Doctor Appointment System 1.0. The affected component is an unknown function in /admin/doctor_action.php where manipulating the argument ID triggers a SQL injection. Remote exploitation is possible, and public exploits have been released. Multi...
itsourcecode Online Doctor Appointment System SQL注入漏洞
itsourcecode Online Doctor Appointment System is an open-source online doctor appointment system developed by itsourcecode. Version 1.0 of the system has a SQL injection vulnerability; this vulnerability arises from incorrect handling of the parameter ID in the file admin/doctoraction.php, which...