| 제목 | Campcodes Hospital Management System Last updated at August 18, 2024 Cross Site Scripting |
|---|
| 설명 | The application fails to properly validate and sanitize user-supplied input in the “Doctor Specialization” field. As a result, the injected payload is stored in the database and executes whenever the affected page is accessed. This confirms the presence of a Stored Cross-Site Scripting (XSS) vulnerability. |
|---|
| 원천 | ⚠️ https://github.com/Yashh-G/zero-day-research/blob/main/HMS_Stored_Cross-site_Scripting.docx |
|---|
| 사용자 | Yashh2 (UID 88530) |
|---|
| 제출 | 2025. 08. 23. AM 09:06 (10 개월 ago) |
|---|
| 모더레이션 | 2025. 08. 30. PM 06:56 (7 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 322045 [Campcodes Hospital Management System 1.0 Edit Doctor Specialization Page edit-doctor-specialization.php 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 17 |
|---|