2 matches found
CVE-2024-9818
CVE-2024-9818 affects SourceCodester Online Veterinary Appointment System 1.0. The vulnerability is an SQL injection in an unknown function of /admin/categories/manage_category.php triggered by manipulating the id parameter. It can be exploited remotely and exploitation/public disclosure is noted...
CVE-2024-10990
CVE-2024-10990 affects SourceCodester Online Veterinary Appointment System 1.0; /admin/services/view_service.php vulnerability arises from unsafely handling the id parameter, enabling SQL injection. A remote attacker can exploit this; the exploit has been publicly disclosed. Mitigations are not c...