CVE-2025-50383

Published
View on NVD ↗
CVSS v3
8.1
HIGH
CVSS v2
N/A
Affected
1
PROJECT

Description

alextselegidis Easy!Appointments v1.5.1 was discovered to contain a SQL injection vulnerability via the order_by parameter.

Abdullah4eb/CVE-2025-50383
Abdullah4eb/CVE-2025-50383
A low-privileged user can exploit this via a crafted order_by parameter, causing time-based blind SQL injection.
GitHubGitHub