CVE-2024-0265

Name of the Vulnerable Software and Affected Versions SourceCodester Clinic Queuing System version 1.0

Description A critical issue affects the processing of the file /index.php, specifically the component GET Parameter Handler. The manipulation of the page argument leads to file inclusion. This issue can be exploited remotely.

Recommendations For SourceCodester Clinic Queuing System version 1.0, consider restricting access to the /index.php file until a patch is available. As a temporary workaround, avoid using the page argument in the affected GET Parameter Handler to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.