Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.5
SourceCodester Patients Waiting Area Queue Management System: Unauthorized Access to Patient Information
CVE-2026-3817
Summary
A security issue in SourceCodester Patients Waiting Area Queue Management System 1.0 allows unauthorized access to patient information. This means that an attacker could potentially view sensitive information they shouldn't have access to. To stay safe, update to a fixed version of the software or consider using a different system.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| pamzey | patients_waiting_area_queue_management_system | 1.0 | – |
Original title
A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. This issue affects some unknown processing of the file /patient-search.php. The manipulation result...
Original description
A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. This issue affects some unknown processing of the file /patient-search.php. The manipulation results in improper authorization. The attack can be launched remotely. The exploit is now public and may be used.
nvd CVSS2.0
5.0
nvd CVSS3.1
5.3
nvd CVSS4.0
5.5
Vulnerability type
CWE-266
Incorrect Privilege Assignment
CWE-285
Improper Authorization
Published: 9 Mar 2026 · Updated: 13 Mar 2026 · First seen: 9 Mar 2026