What the vulnerability does
01Description
Clinic’s Patient Management System versions 2.0 suffers from a SQL injection vulnerability in the login page.
CVE-2025-3096
CRITICAL
CVE-2025-3096: Clinics Patient Management System SQL Injection
CVSS base score
9.3/10
CVSS vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Key dates
02Disclosure timeline
April 1, 2025
CVE published
April 2, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-11529 designcomputer mysql-mcp-server mysql URI server.py read_resource sql injection
CVE-2025-39370 WordPress iCafe Library plugin <= 1.8.3 - SQL Injection vulnerability
CVE-2023-4449 SourceCodester Free and Open Source Inventory Management System sql injection
CVE-2022-41671
CVE-2023-3882 Campcodes Beauty Salon Management System edit-accepted-appointment.php sql injection
