| タイトル | CodeAstro Simple-Hospital-Management-System-in-Python 1.0 Cross Site Scripting |
|---|
| 説明 | A critical Stored Cross-Site Scripting (XSS) vulnerability was discovered in the Available Doctor's file of CodeAstro Simple Hospital Management System in Python. Attackers can inject malicious JavaScript via the patname field (POST parameter), which gets persistently stored in the database and executed whenever the page is viewed. |
|---|
| ソース | ⚠️ https://github.com/Vanshdhawan188/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors-Page/blob/main/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors%20Page.md |
|---|
| ユーザー | Subhash Paudel (UID 66830) |
|---|
| 送信 | 2025年06月29日 09:34 (10 月 ago) |
|---|
| モデレーション | 2025年07月07日 07:56 (8 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 315091 [CodeAstro Simple Hospital Management System 1.0 POST Parameter /doctor.html First Name/Last name/Address クロスサイトスクリプティング] |
|---|
| ポイント | 18 |
|---|