PHPGurukul Hospital Management System In PHP V 4.0 is vulnerable to Cross Site Scripting (XSS) via doctor/view-patient.php, admin/view-patient.php, and view-medhistory.php.
References
Link | Resource |
---|---|
https://sisl.lab.uic.edu/projects/chess/cross-site-scripting-in-hms3/ | Exploit Third Party Advisory |
Configurations
History
14 Nov 2023, 16:22
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:phpgurukul:hospital_management_system:4.0:*:*:*:*:*:*:* | |
First Time |
Phpgurukul hospital Management System
Phpgurukul |
Information
Published : 2022-10-21 13:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-42206
Mitre link : CVE-2022-42206
CVE.ORG link : CVE-2022-42206
JSON object : View
Products Affected
phpgurukul
- hospital_management_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')