CVE-2026-37598 | SourceCodester Patient Appointment Scheduler System 1.0 SystemSettings.php?f=update_settings privilege escalation

A vulnerability, which was classified as critical, was found in SourceCodester Patient Appointment Scheduler System 1.0. Affected by this vulnerability is an unknown functionality of the file /scheduler/classes/SystemSettings.php?f=update_settings. The manipulation results in privilege escalation.

This vulnerability is cataloged as CVE-2026-37598. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More