Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/03/08 8:32 a.m.31 views

CVE-2026-3724 SourceCodester Patients Waiting Area Queue Management System checkin.php improper authorization

A weakness has been identified in SourceCodester Patients Waiting Area Queue Management System 1.0. This impacts an unknown function of the file /checkin.php. This manipulation of the argument patientid causes improper authorization. It is possible to initiate the attack remotely. The exploit has...

6.5CVSS0.00299EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/02/08 11:2 a.m.5 views

CVE-2026-2149

A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /appointments.php. The manipulation of the argument patientid results in cross site scripting. It is possible to...

5.3CVSS3.9AI score0.00352EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/02/08 11:2 a.m.37 views

CVE-2026-2149 SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System appointments.php cross site scripting

A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /appointments.php. The manipulation of the argument patientid results in cross site scripting. It is possible to...

5.3CVSS0.00352EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/01/19 9:2 a.m.25 views

CVE-2026-1147 SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System api_patient_schedule.php cross site scripting

A vulnerability was found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. This affects an unknown part of the file /php/apipatientschedule.php. Performing a manipulation of the argument Reason results in cross site scripting. It is possible to initiate the attac...

5.1CVSS0.00236EPSS
Exploits0References3
CVE
CVE
added 2026/01/19 8:32 a.m.25 views

CVE-2026-1146

The CVE affects SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. The vulnerability is in the file /php/api_register_patient.php , where manipulating the arguments firstName /lastName leads to cross-site scripting (XSS) . It can be exploited remotely, and the exploit...

5.4CVSS3.8AI score0.00176EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/11/16 11:2 a.m.13 views

CVE-2025-13248 SourceCodester Patients Waiting Area Queue Management System api_patient_schedule.php sql injection

A weakness has been identified in SourceCodester Patients Waiting Area Queue Management System 1.0. The impacted element is an unknown function of the file /php/apipatientschedule.php. This manipulation of the argument appointmentID causes sql injection. The attack can be initiated remotely. The...

7.5CVSS0.00342EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/16 12:0 a.m.7 views

PT-2025-47083

Name of the Vulnerable Software and Affected Versions SourceCodester Patients Waiting Area Queue Management System version 1.0 Description A flaw exists in SourceCodester Patients Waiting Area Queue Management System 1.0. The issue involves SQL injection stemming from manipulation of the...

9.8CVSS7.5AI score0.00342EPSS
Exploits1References12
Cvelist
Cvelist
added 2025/11/13 6:2 p.m.14 views

CVE-2025-13122 SourceCodester Patients Waiting Area Queue Management System api_patient_checkin.php getPatientAppointment sql injection

A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. The affected element is the function getPatientAppointment of the file /php/apipatientcheckin.php. Performing manipulation of the argument appointmentID results in sql injection. It is possible to...

7.5CVSS0.00427EPSS
Exploits1References4
Rows per page
Query Builder