Submeter #640411: Campcodes Hospital Management System Last updated at August 18, 2024 Cross Site Scriptinginformação

TítuloCampcodes Hospital Management System Last updated at August 18, 2024 Cross Site Scripting
DescriçãoThe application fails to properly validate and sanitize user-supplied input in the “Doctor Specialization” field. As a result, the injected payload is stored in the database and executes whenever the affected page is accessed. This confirms the presence of a Stored Cross-Site Scripting (XSS) vulnerability.
Fonte⚠️ https://github.com/Yashh-G/zero-day-research/blob/main/HMS_Stored_Cross-site_Scripting.docx
Utilizador
 Yashh2 (UID 88530)
Submissão23/08/2025 09h06 (há 10 meses)
Moderação30/08/2025 18h56 (7 days later)
EstadoAceite
Entrada VulDB322045 [Campcodes Hospital Management System 1.0 Edit Doctor Specialization Page edit-doctor-specialization.php Script de Site Cruzado]
Pontos17

VoltarVisão GeralPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!