Headline

CVE-2021-39411: Cross site scripting in Hospital Management System Gurukul v4.0 | Systems and Internet Security Lab

Multiple Cross Site Scripting (XSS) vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the (1) searchdata parameter in (a) doctor/search.php and (b) admin/patient-search.php, and the (2) fromdate and (3) todate parameters in admin/betweendates-detailsreports.php.

3 years ago

CVE

Open in Source

#xss #vulnerability #php

Cross site scripting in Hospital Management System Gurukul v4.0

Cross site scripting in Hospital Management System Gurukul v4.0 Heading link

Multiple cross site scripting vulnerabilities are present in Hospital Management System version 4.0. The following :

file: hospital/hms/doctor/search.php line: 72 HTTP parameter name: searchdata

file: hospital/hms/admin/patient-search.php", line: 72, HTTP parameter name: searchdata

file: hospital/hms/admin/betweendates-detailsreports.php", line: 57, HTTP parmeter name: fromdate

file: hospital/hms/admin/betweendates-detailsreports.php", line: 58, HTTP parameter name: todate

Above vulnerabilities are published at CVE-2021-39411

This vulnerability was detected as part of the DARPA CHESS program

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

10 months ago

10 months ago

10 months ago

10 months ago

10 months ago