SQL Injection Vulnerability in Clinic’s Patient Management System by SourceCodester
CVE-2025-3096
9.3CRITICAL
Key Information:
- Vendor
Sourcecodester
- Vendor
- CVE Published:
- 1 April 2025
What is CVE-2025-3096?
The Patient Management System by SourceCodester, specifically version 2.0, has been identified with a SQL injection vulnerability. Attackers can exploit this flaw through the login page, allowing unauthorized access to the system’s database. This could lead to data leakage or manipulation, compromising patient data security and system integrity.
Affected Version(s)
Clinic's Patient Management System 2.0