CVE-2025-7752: SQL Injection in code-projects Online Appointment Booking System
A vulnerability was found in code-projects Online Appointment Booking System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/deletedoctor.php. The manipulation of the argument did leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-7752: SQL Injection in code-projects Online Appointment Booking System
Description
A vulnerability was found in code-projects Online Appointment Booking System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/deletedoctor.php. The manipulation of the argument did leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-07-17T10:33:30.583Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 68795303a83201eaace879bd
Added to database: 7/17/2025, 7:46:11 PM
Last updated: 7/17/2025, 7:46:11 PM
Views: 1
Related Threats
CVE-2025-34125: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in D-Link DSP-W110A1
CriticalCVE-2025-53964: n/a
UnknownCVE-2025-23267: CWE-59: Improper Link Resolution Before File Access ('Link Following') in NVIDIA Container Toolkit
HighCVE-2025-34124: CWE-121 Stack-based Buffer Overflow in The 3DO Company Heroes of Might and Magic III
HighCVE-2025-6249: CWE-602: Client-Side Enforcement of Server-Side Security in Lenovo FileZ Client
HighActions
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.