Vaibhavnarkhede

A security flaw has been discovered in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This affects an unknown function. Performing a manipulation results in cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.

A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. Executing a manipulation can lead to information exposure through error message. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks.

**Nome do Software Vulnerável e Versões Afetadas** SourceCodester eDoc Doctor Appointment System versão 1.0 **Description** Um problema existe no endpoint '/admin/delete-session.php' onde a manipulação do argumento `ID` leva à ausência de autorização. Isso permite a exploração remota do sistema. **Recommendations** Atualize o SourceCodester eDoc Doctor Appointment System versão 1.0 para uma versão corrigida. Como medida paliativa temporária, restrinja o acesso ao arquivo '/admin/delete-session.php' para minimizar o risco de exploração.