SQL Injection Vulnerability in Doctor Appointment Booking by NotFound
CVE-2025-27263
8.5HIGH
What is CVE-2025-27263?
The Doctor Appointment Booking plugin developed by NotFound is susceptible to an SQL Injection vulnerability. This flaw arises from improper handling of special elements within SQL commands, allowing attackers to manipulate queries and potentially access sensitive data. This issue affects all versions from 'n/a' through 1.0.0, emphasizing the need for immediate remediation to safeguard user data and ensure the integrity of database interactions.
Affected Version(s)
Doctor Appointment Booking <= 1.0.0