CVE-2026-3724

Name of the Vulnerable Software and Affected Versions SourceCodester Patients Waiting Area Queue Management System version 1.0

Description A weakness exists in SourceCodester Patients Waiting Area Queue Management System 1.0. The issue involves improper authorization due to manipulation of the patient id argument within an unknown function of the /checkin.php file. This allows for remote exploitation. The exploit has been publicly released.

Recommendations Apply any available updates or patches for version 1.0. As a temporary workaround, restrict access to the /checkin.php file or the function handling the patient id parameter until a patch is available.