CVE-2025-8973

A vulnerability has been found in SourceCodester Cashier Queuing System 1.0. Affected is an unknown function of the file /Actions.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and m...

CVE-2024-6273

SourceCodester Clinic Queuing System 1.0 is affected. The vulnerability is in the function save_patient of patient_side.php, where manipulating Full Name/Contact/Address leads to cross-site scripting. The issue can be exploited remotely and the exploit has been publicly disclosed. No patch detail...

Design/Logic Flaw

A vulnerability was found in SourceCodester Clinic Queuing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /index.php of the component GET Parameter Handler. The manipulation of the argument page leads to file inclusion. The attack may be initiate...

Authorization

A vulnerability was found in SourceCodester Clinic Queuing System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /LoginRegistration.php. The manipulation of the argument formToken leads to authorization bypass. The attack can be initiated remotely. The...

CVE-2024-0265

CVE-2024-0265 affects SourceCodester Clinic Queuing System 1.0. The issue is a local file inclusion (LFI) via the GET parameter handler in the file /index.php, where the argument page is unsafely used in an include(). The root cause is the unsanitized input being incorporated into PHP include(), ...