CVE-2025-64081 | THREATINT

Description

SQL injection vulnerability in /php/api_patient_schedule.php in SourceCodester Patients Waiting Area Queue Management System v1 allows attackers to execute arbitrary SQL commands via the appointmentID parameter.

PUBLISHED Reserved 2025-10-27 | Published 2025-12-08 | Updated 2025-12-08 | Assigner mitre

References

www.sourcecodester.com/...-area-queue-management-system.html

packetstorm.news/files/id/211592

cve.org (CVE-2025-64081)

nvd.nist.gov (CVE-2025-64081)

Download JSON