CVE-2025-4817 | Sourcecodester Doctor’s Appointment System 1.0 GET Parameter delete-appointment.php ID sql injection

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability was found in Sourcecodester Doctor’s Appointment System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/delete-appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection.

This vulnerability was named CVE-2025-4817. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-4817 | Sourcecodester Doctor’s Appointment System 1.0 GET Parameter delete-appointment.php ID sql injection

Post correlati

CVE-2024-11111 | Google Chrome up to 130.0.6723.116 Autofill ui layer

CVE-2024-8552 | Download Monitor Plugin up to 5.0.9 on WordPress Shop Enable authorization

CVE-2023-52842 | Linux Kernel up to 6.6.1 virtio_transport_recv_pkt initialization (cd12535b97dd/0b8906fb48b9/34c4effacfc3)

CVE-2024-10617 | Tongda OA up to 11.10 check_seal.php ID sql injection