| Titel | itsourcecode E-Logbook with Health Monitoring System for COVID-19 V1.0 SQL Injection |
|---|
| Beschreibung | A Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the E-Logbook with Health Monitoring System for COVID-19. The vulnerability exists due to improper sanitization and lack of output encoding on the "profile_id" field submitted via a POST request to /stc-log-keeper/check_profile.php. |
|---|
| Quelle | ⚠️ https://github.com/yihaofuweng/cve/issues/21 |
|---|
| Benutzer | wys3300 (UID 82144) |
|---|
| Einreichung | 03.09.2025 14:39 (vor 8 Monaten) |
|---|
| Moderieren | 13.09.2025 21:56 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 323845 [itsourcecode E-Logbook with Health Monitoring System for COVID-19 POST Request check_profile.php Cross Site Scripting] |
|---|
| Punkte | 18 |
|---|