Echidonut

**Name of the Vulnerable Software and Affected Versions** SourceCodester Clinic Queuing System version 1.0 **Description** A critical issue has been found in the SourceCodester Clinic Queuing System, affecting the /LoginRegistration.php file. The manipulation of the `formToken` argument leads to authorization bypass. This issue can be exploited remotely. **Recommendations** For SourceCodester Clinic Queuing System version 1.0, as a temporary workaround, consider restricting access to the /LoginRegistration.php file until a patch is available. Additionally, avoid using the `formToken` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Clinic Queuing System version 1.0 **Description** A critical issue affects the processing of the file /index.php, specifically the component GET Parameter Handler. The manipulation of the `page` argument leads to file inclusion. This issue can be exploited remotely. **Recommendations** For SourceCodester Clinic Queuing System version 1.0, consider restricting access to the /index.php file until a patch is available. As a temporary workaround, avoid using the `page` argument in the affected GET Parameter Handler to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.