CVE-2025-13248 | SourceCodester Patients Waiting Area Queue Management System 1.0 api_patient_schedule.php appointmentID sql injection

A vulnerability marked as critical has been reported in SourceCodester Patients Waiting Area Queue Management System 1.0. The impacted element is an unknown function of the file /php/api_patient_schedule.php. This manipulation of the argument appointmentID causes sql injection.

This vulnerability is handled as CVE-2025-13248. The attack can be initiated remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More