UNKNOWNCVE-2026-5180
SourceCodester Simple Doctors Appointment System ajax.php sql injection
Platform
php
Component
simple-doctors-appointment-system
A flaw has been found in SourceCodester Simple Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=login2. This manipulation of the argument email causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used.
How to fix
Actualizar a una versión parcheada del sistema de citas médicas. Contacte al proveedor para obtener una versión corregida o aplique un parche que corrija la vulnerabilidad de inyección SQL en el archivo /admin/ajax.php?action=login2. Valide y limpie las entradas del usuario para prevenir futuros ataques.
Monitor your dependencies automatically
Get notified when new vulnerabilities affect your projects. Free forever.
Start free