Vulnerabilities > Doctor S Appointment System Project

DATE CVE VULNERABILITY TITLE RISK
2022-08-31 CVE-2022-36201 SQL Injection vulnerability in Doctor'S Appointment System Project Doctor'S Appointment System 1.0
Doctor’s Appointment System v1.0 is vulnerable to Blind SQLi via settings.php.
network
low complexity
doctor-s-appointment-system-project CWE-89
critical
 9.8
9.8
2022-08-31 CVE-2022-36202 Authorization Bypass Through User-Controlled Key vulnerability in Doctor'S Appointment System Project Doctor'S Appointment System 1.0
Doctor's Appointment System1.0 is vulnerable to Incorrect Access Control via edoc/patient/settings.php.
network
low complexity
doctor-s-appointment-system-project CWE-639
critical
 9.8
9.8