NextGuard
UNKNOWNCVE-2026-5179

SourceCodester Simple Doctors Appointment System login.php sql injection

Platform

php

Component

cve

View on NVD

A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This affects an unknown part of the file /admin/login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit is now public and may be used.

How to fix

Actualizar a una versión parcheada del sistema de citas médicas. Si no hay una versión disponible, revisar y sanear las entradas del usuario en el archivo login.php, especialmente el campo Username, para prevenir la inyección SQL. Considerar el uso de consultas parametrizadas o un ORM para mitigar el riesgo.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free
CVE-2026-5179 — Vulnerability Details | NextGuard | NextGuard