Vulnerabilities > CVE-2023-1057 - Unspecified vulnerability in Doctors Appointment System Project Doctors Appointment System 1.0

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

doctors-appointment-system-project

NVD

Published: 2023-02-27

Updated: 2024-11-21

Summary

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been rated as critical. Affected by this issue is the function edoc of the file login.php. The manipulation of the argument usermail leads to sql injection. VDB-221822 is the identifier assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Doctors_Appointment_System_Project Doctors Appointment System Project Doctors Appointment System 1.0	1

References

https://github.com/E1CHO/cve_hub/blob/main/edoc%20doctor%20appointment%20system/edoc%20doctor%20appointment%20system%20vlun1.pdf
https://github.com/E1CHO/cve_hub/blob/main/edoc%20doctor%20appointment%20system/edoc%20doctor%20appointment%20system%20vlun1.pdf
https://vuldb.com/?ctiid.221822
https://vuldb.com/?ctiid.221822
https://vuldb.com/?id.221822
https://vuldb.com/?id.221822