CVE-2026-2149

Medium CVSS: 5.3

A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /appointments.php. The manipulation of the argument patient_id results in cross site scripting. It is possible to launch the attack remotely. The exploit is now public and may be used.

Vendor

Pamzey

Product

Patients Waiting Area Queue Management System

CWE

CWE-79

Yayın Tarihi

2026-02-08 11:15:53

Güncelleme

2026-02-10 14:50:12

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Patients Waiting Area Queue Management System MEDIUM Pamzey 2026

Referanslar

https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/Patients-Waiting-Area-Queue-Management-System-appointments-XSS.md https://vuldb.com/?ctiid.344851 https://vuldb.com/?id.344851 https://vuldb.com/?submit.747920

Benzer Kayıtlar

Medium

CVE-2026-3817

A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. This issue affects som…

Medium

CVE-2026-3724

A weakness has been identified in SourceCodester Patients Waiting Area Queue Management System 1.0. This impacts an unkn…

Medium

CVE-2026-3171

A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by thi…

Medium

CVE-2026-3170

A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected…

Medium

CVE-2026-2154

A vulnerability was identified in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Impact…

Medium

CVE-2026-2150

A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by thi…