156 matches found
Sql injection
A vulnerability classified as critical was found in SourceCodester Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/doctors.php of the component Parameter Handler. The manipulation of the argument search leads to sql injection. The attack can be initiated...
Sql injection
A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edoc/doctor/patient.php. The manipulation of the argument search12 leads to sql injection. The attack can be launch...
Sql injection
A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been rated as critical. Affected by this issue is the function edoc of the file login.php. The manipulation of the argument usermail leads to sql injection. VDB-221822 is the identifier assigned to this vulnerabili...
Sql injection
A vulnerability has been found in SourceCodester Doctors Appointment System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/patient.php of the component Parameter Handler. The manipulation of the argument search leads to sql injection...
Sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Doctors Appointment System 1.0. Affected is an unknown function of the file /admin/add-new.php of the component Parameter Handler. The manipulation of the argument email leads to sql injection. It is possible to launch...
Sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Doctors Appointment System 1.0. This issue affects some unknown processing of the file /admin/edit-doc.php. The manipulation of the argument oldmail leads to sql injection. The attack may be initiated remotely. Th...
CVE-2023-1063 SourceCodester Doctors Appointment System Parameter patient.php sql injection
A vulnerability has been found in SourceCodester Doctors Appointment System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/patient.php of the component Parameter Handler. The manipulation of the argument search leads to sql injection...
CVE-2023-1063
CVE-2023-1063 affects SourceCodester Doctors Appointment System 1.0, where the SQL injection flaw resides in the Parameter Handler, specifically via manipulating the search parameter in /admin/patient.php. The issue can be exploited remotely; public disclosure exists. The root cause is unsafely h...
CVE-2023-1062 SourceCodester Doctors Appointment System Parameter add-new.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Doctors Appointment System 1.0. Affected is an unknown function of the file /admin/add-new.php of the component Parameter Handler. The manipulation of the argument email leads to sql injection. It is possible to launch...
CVE-2023-1062
CVE-2023-1062 affects SourceCodester Doctors Appointment System 1.0 in the Parameter Handler’s file /admin/add-new.php. The vulnerability is caused by manipulation of the email parameter, enabling SQL injection. It is remotely exploitable and the exploit has been publicly disclosed. Multiple conn...
CVE-2023-1061
CVE-2023-1061 affects SourceCodester Doctors Appointment System 1.0. The issue is a SQL injection in the /admin/edit-doc.php endpoint, triggered by manipulating the email/oldmail argument. It is exploitable remotely and has had public exploitation disclosures. Connected sources corroborate an att...
CVE-2023-1061 SourceCodester Doctors Appointment System edit-doc.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Doctors Appointment System 1.0. This issue affects some unknown processing of the file /admin/edit-doc.php. The manipulation of the argument email/oldmail leads to sql injection. The attack may be initiated...
CVE-2023-1059 SourceCodester Doctors Appointment System Parameter doctors.php sql injection
A vulnerability classified as critical was found in SourceCodester Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/doctors.php of the component Parameter Handler. The manipulation of the argument search/id leads to sql injection. The attack can be...
CVE-2023-1059 SourceCodester Doctors Appointment System Parameter doctors.php sql injection
A vulnerability classified as critical was found in SourceCodester Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/doctors.php of the component Parameter Handler. The manipulation of the argument search/id leads to sql injection. The attack can be...
CVE-2023-1059
CVE-2023-1059 affects SourceCodester Doctors Appointment System 1.0. The vulnerability resides in the file /admin/doctors.php (Parameter Handler) where the parameter search/id is manipulated, leading to SQL injection. It is a remotely exploitable vulnerability described as critical with public ex...
CVE-2023-1058 SourceCodester Doctors Appointment System create-account.php sql injection
A vulnerability classified as critical has been found in SourceCodester Doctors Appointment System 1.0. This affects an unknown part of the file create-account.php. The manipulation of the argument newemail leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...
CVE-2023-1058
CVE-2023-1058 affects SourceCodester Doctors Appointment System 1.0. The vulnerability is an SQL injection in create-account.php triggered by the newemail parameter. It can be exploited remotely and has been disclosed publicly. Affected component: create-account.php; root cause: improper handling...
CVE-2023-1057
CVE-2023-1057 affects SourceCodester Doctors Appointment System 1.0. The vulnerable component is the edoc function in login.php, where manipulating the usermail parameter enables SQL injection. This is a server-side data exposure/alteration risk with a network attack vector and highImpact on conf...
CVE-2023-1057 SourceCodester Doctors Appointment System login.php edoc sql injection
A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been rated as critical. Affected by this issue is the function edoc of the file login.php. The manipulation of the argument usermail leads to sql injection. VDB-221822 is the identifier assigned to this vulnerabili...
CVE-2023-1056
CVE-2023-1056 affects SourceCodester Doctors Appointment System v1.0, specifically the vulnerable code path in /edoc/doctor/patient.php where manipulating the search12 parameter enables SQL injection. The issue is exploitable remotely and the exploit has been publicly disclosed. Multiple connecte...