Vulnerabilities > Doctor S Appointment System Project > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-31 | CVE-2022-36201 | SQL Injection vulnerability in Doctor'S Appointment System Project Doctor'S Appointment System 1.0 Doctor’s Appointment System v1.0 is vulnerable to Blind SQLi via settings.php. | 9.8 |
| 2022-08-31 | CVE-2022-36202 | Authorization Bypass Through User-Controlled Key vulnerability in Doctor'S Appointment System Project Doctor'S Appointment System 1.0 Doctor's Appointment System1.0 is vulnerable to Incorrect Access Control via edoc/patient/settings.php. | 9.8 |