Enviar #588828: PHPGurukul Hospital-Management-System 4.0 Cross Site Scriptinginformación

TítuloPHPGurukul Hospital-Management-System 4.0 Cross Site Scripting
DescripciónA critical Stored Cross-Site Scripting (XSS) vulnerability was discovered in the edit-patient.php file of PHPGurukul's Hospital Management System (v4.0). Attackers can inject malicious JavaScript via the patname field (POST parameter), which gets persistently stored in the database and executed whenever the profile page is viewed.
Fuente⚠️ https://github.com/Ant1sec-ops/Hospital-management-Systemv4.0-Stored-XSS/blob/main/stored-xss-exploit.md
Usuario
 Subhash Paudel (UID 66830)
Sumisión2025-06-02 16:49 (hace 1 Año)
Moderación2025-06-03 22:51 (1 day later)
EstadoAceptado
Entrada de VulDB311046 [PHPGurukul Hospital Management System 4.0 POST Parameter edit-patient.php?editid=2 patname secuencias de comandos en sitios cruzados]
Puntos18

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!