Security Advisory

CVE-2025-3186

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-03 23:31:05

Last updated 2025-04-04 17:26:17

Assigner VulDB

State PUBLISHED

Description

A vulnerability was found in projectworlds Online Doctor Appointment Booking System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /patient/invoice.php. The manipulation of the argument appid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗