CVE-2026-5181 | SourceCodester Simple Doctors Appointment System up to 1.0 ajax.php?action=save_category img unrestricted upload

A vulnerability was found in SourceCodester Simple Doctors Appointment System up to 1.0. It has been declared as critical. This issue affects some unknown processing of the file /doctors_appointment/admin/ajax.php?action=save_category. Such manipulation of the argument img leads to unrestricted upload.

This vulnerability is listed as CVE-2026-5181. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More