A vulnerability classified as critical has been found in SourceCodester Open Source Clinic Management System 1.0. Affected is an unknown function of the file /login.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://github.com/mysq13/CVE/issues/3 | Exploit Issue Tracking Third Party Advisory |
| https://github.com/mysq13/CVE/issues/3 | Exploit Issue Tracking Third Party Advisory |
| https://vuldb.com/?ctiid.311238 | Permissions Required VDB Entry |
| https://vuldb.com/?id.311238 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.590566 | Third Party Advisory VDB Entry |
| https://www.sourcecodester.com/ | Product |
Configurations
Configuration 1 (hide)
|
History
10 Jun 2025, 15:46
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Nikhil-bhalerao open Source Clinic Management System
Nikhil-bhalerao |
|
| CPE | cpe:2.3:a:nikhil-bhalerao:open_source_clinic_management_system:1.0:*:*:*:*:*:*:* | |
| References | () https://www.sourcecodester.com/ - Product | |
| References | () https://github.com/mysq13/CVE/issues/3 - Exploit, Issue Tracking, Third Party Advisory | |
| References | () https://vuldb.com/?ctiid.311238 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?id.311238 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.590566 - Third Party Advisory, VDB Entry |
09 Jun 2025, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-74 |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
06 Jun 2025, 04:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-06-06 04:15
Updated : 2025-06-10 15:46
NVD link : CVE-2025-5716
Mitre link : CVE-2025-5716
JSON object : View
Products Affected
nikhil-bhalerao
- open_source_clinic_management_system
CWE
No CWE.