CNNVD-202511-799 Information

CNNVD ID

CNNVD-202511-799

Related CVE

CVE-2025-63718

• CNNVD Published: 2025-11-07

Description (Chinese)

SourceCodester PQMS是SourceCodester开源的一个产品质量管理系统。 SourceCodester PQMS 1.0版本存在安全漏洞，该漏洞源于api_patient_schedule.php端点中appointmentID参数清理不当，可能导致执行任意SQL命令。

Description (English)

SourceCodester PQMS is an open-source product quality management system. The security gap in version 1.0 of SourceCodester PQMS stems from the inappropriate clean-up of the appointmentID parameters at the api patient schedule.php endpoint, which may lead to the execution of any SQL order.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

SourceCodester

Published

2025-11-07

Last Modified

2026-02-24

References

https://github.com/floccocam-cpu/CVE-Research-2025/blob/main/CVE-2025-63718/README8.md https://www.sourcecodester.com/php/18348/patients-waiting-area-queue-management-system.html