CVE-2025-4816 | SourceCodester Doctor’s Appointment System 1.0 GET Parameter /admin/appointment.php ID sql injection

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability was found in SourceCodester Doctor’s Appointment System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-4816. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-4816 | SourceCodester Doctor’s Appointment System 1.0 GET Parameter /admin/appointment.php ID sql injection

Post correlati

CVE-2024-5897 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Master.php name cross site scripting

CVE-2024-7384 | Acyba AcyMailing Plugin up to 9.7.2 on WordPress acym_extractArchive unrestricted upload

CVE-2024-1812 | Everest Forms Plugin up to 2.0.7 on WordPress font_url server-side request forgery

CVE-2023-52335 | Advantech iView ConfigurationServlet information disclosure