CVE-2022-36202

CVE-2022-36202

EPSS 0.9%

Doctor's Appointment System1.0 is vulnerable to Incorrect Access Control via edoc/patient/settings.php. The settings.php is affected by Broken Access Control (IDOR) via id= parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://hshnudr.com https://github.com/aznull/CVEs https://www.sourcecodester.com/hashenudara/simple-doctors-appointment-project.html