CVE-2026-3980
HIGH SEVERITYCVSS Score & Metrics
Base Score
7.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Description
A vulnerability has been found in itsourcecode Online Doctor Appointment System 1.0. This impacts an unknown function of the file /admin/patient_action.php. Such manipulation of the argument patient_id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-74
Source
NVD
Vendor
unguardable
Product
online_doctor_appointment_system
Discussion (0)
Add Comment
No comments yet. Be the first!