PT-2025-35517 · Unknown · Remote Clinic
03Hice
·
Published
2025-09-01
·
Updated
2025-09-02
·
CVE-2025-9802
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:L/Au:M/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
RemoteClinic version 2.0
Description
A SQL injection issue exists in RemoteClinic 2.0 due to the manipulation of the
ID argument in the /staff/profile.php file. The attack can be executed remotely.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Special Elements Injection
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Remote Clinic