2 matches found
CVE-2023-1056
CVE-2023-1056 affects SourceCodester Doctors Appointment System v1.0, specifically the vulnerable code path in /edoc/doctor/patient.php where manipulating the search12 parameter enables SQL injection. The issue is exploitable remotely and the exploit has been publicly disclosed. Multiple connecte...
CVE-2023-1056 SourceCodester Doctors Appointment System patient.php sql injection
A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edoc/doctor/patient.php. The manipulation of the argument search12 leads to sql injection. The attack can be launch...