Code Projects Hospital Information System 1.0 is vulnerable to Cross Site Scripting (XSS)
References
Link | Resource |
---|---|
https://code-projects.org/hospital-information-system-in-php-with-source-code/ | Product |
https://github.com/InfoSecWarrior/Offensive-Payloads/blob/main/Cross-Site-Scripting-XSS-Payloads.txt | Exploit Third Party Advisory |
https://github.com/Mr-Secure-Code/My-CVE/blob/main/CVE-2023-37070-Exploit.md | Exploit Third Party Advisory |
https://github.com/riteshs4hu/My-CVE/blob/main/CVE-2023-37070-Exploit.md |
Configurations
History
25 Sep 2024, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
18 Aug 2023, 20:16
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://code-projects.org/hospital-information-system-in-php-with-source-code/ - Product | |
References | (MISC) https://github.com/Mr-Secure-Code/My-CVE/blob/main/CVE-2023-37070-Exploit.md - Exploit, Third Party Advisory | |
References | (MISC) https://github.com/InfoSecWarrior/Offensive-Payloads/blob/main/Cross-Site-Scripting-XSS-Payloads.txt - Exploit, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.8 |
CPE | cpe:2.3:a:code-projects:hospital_information_system:1.0:*:*:*:*:*:*:* | |
First Time |
Code-projects
Code-projects hospital Information System |
|
CWE | CWE-79 |
14 Aug 2023, 13:26
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-14 13:15
Updated : 2024-09-25 01:15
NVD link : CVE-2023-37070
Mitre link : CVE-2023-37070
CVE.ORG link : CVE-2023-37070
JSON object : View
Products Affected
code-projects
- hospital_information_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')