CVE-2025-10620

Medium CVSS: 5.3

A flaw has been found in itsourcecode Online Clinic Management System 1.0. This vulnerability affects unknown code of the file /editp2.php. Executing manipulation of the argument id/firstname/lastname/type/age/address can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used.

Vendor

Angeljudesuarez

Product

Online Clinic Management System

CWE

CWE-74

Yayın Tarihi

2025-09-17 22:15:35

Güncelleme

2025-09-20 02:34:59

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Online Clinic Management System MEDIUM Angeljudesuarez 2025

Referanslar

https://github.com/drew-byte/OnlineClinicManagementSystem_TimeBasedSQLi_PoC/blob/main/README.md https://itsourcecode.com/ https://vuldb.com/?ctiid.324647 https://vuldb.com/?id.324647 https://vuldb.com/?submit.650193 https://github.com/drew-byte/OnlineClinicManagementSystem_TimeBasedSQLi_PoC/blob/main/README.md

Benzer Kayıtlar

Medium

CVE-2026-4474

A flaw has been found in itsourcecode University Management System 1.0. Impacted is an unknown function of the file /adm…

Medium

CVE-2026-4223

A vulnerability was identified in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing…

Medium

CVE-2026-3944

A vulnerability was determined in itsourcecode University Management System 1.0. This vulnerability affects unknown code…

Medium

CVE-2026-3812

A vulnerability was determined in itsourcecode Payroll Management System 1.0. Affected is an unknown function of the fil…

Medium

CVE-2026-3767

A weakness has been identified in itsourcecode sanitize or validate this input 1.0. Affected is an unknown function of t…

Medium

CVE-2026-3765

A vulnerability was identified in itsourcecode University Management System 1.0. This affects an unknown function of the…