Soumettre #640411: Campcodes Hospital Management System Last updated at August 18, 2024 Cross Site Scriptinginformation

TitreCampcodes Hospital Management System Last updated at August 18, 2024 Cross Site Scripting
DescriptionThe application fails to properly validate and sanitize user-supplied input in the “Doctor Specialization” field. As a result, the injected payload is stored in the database and executes whenever the affected page is accessed. This confirms the presence of a Stored Cross-Site Scripting (XSS) vulnerability.
La source⚠️ https://github.com/Yashh-G/zero-day-research/blob/main/HMS_Stored_Cross-site_Scripting.docx
Utilisateur
 Yashh2 (UID 88530)
Soumission23/08/2025 09:06 (il y a 10 mois)
Modérer30/08/2025 18:56 (7 days later)
StatutAccepté
Entrée VulDB322045 [Campcodes Hospital Management System 1.0 Edit Doctor Specialization Page edit-doctor-specialization.php cross site scripting]
Points17

PrécédentAperçuSuivant

Do you want to use VulDB in your project?

Use the official API to access entries easily!