cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-4219,https://securityvulnerability.io/vulnerability/CVE-2023-4219,SourceCodester Doctors Appointment System login.php sql injection,"An SQL injection vulnerability exists in the login.php file of SourceCodester Doctors Appointment System version 1.0. This flaw allows attackers to manipulate the 'useremail' argument, potentially enabling unauthorized access to sensitive data by executing malicious SQL statements. As the exploit can be initiated remotely, it poses a significant security risk for users of this application. The public disclosure of this vulnerability has heightened concerns over its exploitation, making timely remediation essential.",SourceCodester,Doctors Appointment System,7.5,HIGH,0.0014900000533089042,false,,false,false,false,,,false,false,,2023-08-08T13:15:00.000Z,0
CVE-2023-1059,https://securityvulnerability.io/vulnerability/CVE-2023-1059,SourceCodester Doctors Appointment System Parameter doctors.php sql injection,A vulnerability classified as critical was found in SourceCodester Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/doctors.php of the component Parameter Handler. The manipulation of the argument search leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221824.,Sourcecodester,Doctors Appointment System,6.3,MEDIUM,0.0021299999207258224,false,,false,false,false,,,false,false,,2023-02-27T12:15:00.000Z,0
CVE-2023-1061,https://securityvulnerability.io/vulnerability/CVE-2023-1061,SourceCodester Doctors Appointment System edit-doc.php sql injection,"An SQL injection vulnerability exists in SourceCodester's Doctors Appointment System version 1.0, particularly affecting the /admin/edit-doc.php file. The improper processing of the 'oldmail' parameter allows remote attackers to inject arbitrary SQL commands, potentially compromising the application's database. Given that the exploit is publicly disclosed, organizations using this software should assess their exposure and implement necessary protections promptly.",SourceCodester,Doctors Appointment System,8.8,HIGH,0.0026100000832229853,false,,false,false,false,,,false,false,,2023-02-27T12:15:00.000Z,0
CVE-2023-1062,https://securityvulnerability.io/vulnerability/CVE-2023-1062,SourceCodester Doctors Appointment System Parameter add-new.php sql injection,"A SQL injection vulnerability exists in the SourceCodester Doctors Appointment System 1.0, specifically within the /admin/add-new.php file of the Parameter Handler component. By manipulating the email parameter, an attacker can execute unauthorized SQL queries, allowing for remote exploitation. This flaw poses significant security risks, as it can lead to unauthorized access to sensitive data. The vulnerability has been publicly disclosed, increasing the urgency for affected users to implement remediation measures.",SourceCodester,Doctors Appointment System,8.8,HIGH,0.0021299999207258224,false,,false,false,false,,,false,false,,2023-02-27T12:15:00.000Z,0
CVE-2023-1056,https://securityvulnerability.io/vulnerability/CVE-2023-1056,SourceCodester Doctors Appointment System patient.php sql injection,"A security flaw exists in the Doctors Appointment System developed by SourceCodester, specifically in the /edoc/doctor/patient.php file. The vulnerability stems from improper handling of the search12 argument, allowing attackers to perform SQL injection attacks remotely. This vulnerability has been made public and can potentially be exploited, compromising database integrity and security.",SourceCodester,Doctors Appointment System,8.8,HIGH,0.0021299999207258224,false,,false,false,false,,,false,false,,2023-02-27T12:15:00.000Z,0
CVE-2023-1057,https://securityvulnerability.io/vulnerability/CVE-2023-1057,SourceCodester Doctors Appointment System login.php edoc sql injection,"A vulnerability has been identified in SourceCodester's Doctors Appointment System version 1.0, specifically within the login.php file's edoc function. An attacker can exploit this flaw by manipulating the usermail argument, potentially allowing unauthorized access and manipulation of the database. This highlights the importance of proper input validation and security measures to safeguard against SQL injection attacks.",SourceCodester,Doctors Appointment System,8.8,HIGH,0.0026100000832229853,false,,false,false,false,,,false,false,,2023-02-27T12:15:00.000Z,0
CVE-2023-1058,https://securityvulnerability.io/vulnerability/CVE-2023-1058,SourceCodester Doctors Appointment System create-account.php sql injection,"A security flaw has been identified in the SourceCodester Doctors Appointment System 1.0, specifically related to the `create-account.php` file. The vulnerability arises from improper handling of the `newemail` argument, allowing attackers to execute SQL injection attacks remotely. This exploitation could potentially compromise database integrity and lead to unauthorized access to sensitive information. Security measures should be implemented promptly to mitigate this risk, as the details of the vulnerability have been made publicly available.",SourceCodester,Doctors Appointment System,8.8,HIGH,0.0021299999207258224,false,,false,false,false,,,false,false,,2023-02-27T12:15:00.000Z,0
CVE-2023-1063,https://securityvulnerability.io/vulnerability/CVE-2023-1063,SourceCodester Doctors Appointment System Parameter patient.php sql injection,"An SQL injection vulnerability exists in the Doctors Appointment System developed by SourceCodester, specifically within the /admin/patient.php file. The vulnerability is triggered through manipulation of the 'search' argument, allowing attackers to execute arbitrary SQL commands remotely. This poses a significant risk to the confidentiality and integrity of the patient data managed by the application. The exploit has been publicly disclosed, raising concerns for users of this system.",SourceCodester,Doctors Appointment System,8.8,HIGH,0.0026100000832229853,false,,false,false,false,,,false,false,,2023-02-27T12:15:00.000Z,0