Persistent cross-site scripting (XSS) in Hospital Management System targeted towards web admin through contact.php.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/163869/Hospital-Management-System-Cross-Site-Scripting.html | Exploit Third Party Advisory VDB Entry |
https://github.com/kishan0725/Hospital-Management-System/issues/6 | Exploit Issue Tracking Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
23 Aug 2021, 17:50
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | (MISC) https://github.com/kishan0725/Hospital-Management-System/issues/6 - Exploit, Issue Tracking, Third Party Advisory | |
CPE | cpe:2.3:a:hospital_management_system_project:hospital_management_system:-:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 6.1 |
CWE | CWE-79 |
16 Aug 2021, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-08-16 14:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-38757
Mitre link : CVE-2021-38757
CVE.ORG link : CVE-2021-38757
JSON object : View
Products Affected
hospital_management_system_project
- hospital_management_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')