Security Advisory

CVE-2025-13248

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-16 11:02:06

Last updated 2025-11-17 19:08:48

Assigner VulDB

State PUBLISHED

Description

A weakness has been identified in SourceCodester Patients Waiting Area Queue Management System 1.0. The impacted element is an unknown function of the file /php/api_patient_schedule.php. This manipulation of the argument appointmentID causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

← Browse all CVEs View on cve.org ↗