CVE-2025-13122

Medium CVSS: 6.9

A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. The affected element is the function getPatientAppointment of the file /php/api_patient_checkin.php. Performing manipulation of the argument appointmentID results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.

Vendor

Pamzey

Product

Patients Waiting Area Queue Management System

CWE

CWE-74

Yayın Tarihi

2025-11-13 18:15:50

Güncelleme

2025-11-17 12:30:18

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Patients Waiting Area Queue Management System MEDIUM Pamzey 2025

Referanslar

https://vuldb.com/?ctiid.332350 https://vuldb.com/?id.332350 https://vuldb.com/?submit.683789 https://www.sourcecodester.com/

Benzer Kayıtlar

Medium

CVE-2026-3817

A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. This issue affects som…

Medium

CVE-2026-3724

A weakness has been identified in SourceCodester Patients Waiting Area Queue Management System 1.0. This impacts an unkn…

Medium

CVE-2026-3171

A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by thi…

Medium

CVE-2026-3170

A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected…

Medium

CVE-2026-2154

A vulnerability was identified in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Impact…

Medium

CVE-2026-2150

A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by thi…