CVE-2022-42206

PHPGurukul Hospital Management System In PHP V 4.0 is vulnerable to Cross Site Scripting (XSS) via doctor/view-patient.php, admin/view-patient.php, and view-medhistory.php.
Configurations

Configuration 1 (hide)

cpe:2.3:a:phpgurukul:hospital_management_system:4.0:*:*:*:*:*:*:*

History

21 Nov 2024, 07:24

Type Values Removed Values Added
References () https://sisl.lab.uic.edu/projects/chess/cross-site-scripting-in-hms3/ - Exploit, Third Party Advisory () https://sisl.lab.uic.edu/projects/chess/cross-site-scripting-in-hms3/ - Exploit, Third Party Advisory

14 Nov 2023, 16:22

Type Values Removed Values Added
CPE cpe:2.3:a:hospital_management_system_project:hospital_management_system:4.0:*:*:*:*:*:*:* cpe:2.3:a:phpgurukul:hospital_management_system:4.0:*:*:*:*:*:*:*
First Time Phpgurukul hospital Management System
Phpgurukul

Information

Published : 2022-10-21 13:15

Updated : 2024-11-21 07:24


NVD link : CVE-2022-42206

Mitre link : CVE-2022-42206

CVE.ORG link : CVE-2022-42206


JSON object : View

Products Affected

phpgurukul

  • hospital_management_system
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')