| عنوان | CodeAstro Simple Hospital Management System in Python 1.0 Cross Site Scripting |
|---|
| الوصف | A critical Stored Cross-Site Scripting (XSS) vulnerability was discovered in the Registred Patients file of CodeAstro Simple Hospital Management System in Python. Attackers can inject malicious JavaScript via the patname field (POST parameter), which gets persistently stored in the database and executed whenever the profile page is viewed. |
|---|
| المصدر | ⚠️ https://github.com/Vanshdhawan188/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS/blob/main/Simple%20Hospital%20Management%20System%20in%20Python%20CodeAstro%20Patients%20Stored%20XSS.md |
|---|
| المستخدم | Subhash Paudel (UID 66830) |
|---|
| ارسال | 28/06/2025 10:07 PM (12 أشهر منذ) |
|---|
| الاعتدال | 07/07/2025 07:51 AM (8 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 315086 [CodeAstro Simple Hospital Management System 1.0 POST Parameter /patient.html البرمجة عبر المواقع] |
|---|
| النقاط | 18 |
|---|