Submeter #592643: PHPGurukul Nipah virus (NiV) – Testing Management System V1.0 Cross Site Scriptinginformação

TítuloPHPGurukul Nipah virus (NiV) – Testing Management System V1.0 Cross Site Scripting
DescriçãoDuring the security assessment of "Nipah virus (NiV) – Testing Management System", I detected a critical Cross-Site Scripting vulnerability in the "/nipah-tms/patient-search-report.php" file. This vulnerability is attributed to the insufficient sanitization and validation of user input for the "searchdata" parameter. This inadequacy enables attackers to inject malicious JavaScript payloads that execute within the context of the application domain. Consequently, attackers can compromise user accounts, steal sensitive information, and manipulate application functionality. Immediate corrective actions are essential to safeguard user security and maintain trust.
Fonte⚠️ https://github.com/kakalalaww/CVE/issues/15
Utilizador
 kakalalaww (UID 86294)
Submissão08/06/2025 11h25 (há 1 Ano)
Moderação15/06/2025 12h35 (7 days later)
EstadoDuplicado
Entrada VulDB246123 [PHPGurukul Nipah Virus Testing Management System 1.0 Search Report Page patient-search-report.php Search By Patient Name Script de Site Cruzado]
Pontos0

VoltarVisão GeralPróximo

Do you need the next level of professionalism?

Upgrade your account now!