PT-2025-32298 · Unknown · Hospital Management System
Published
2025-08-07
·
Updated
2025-08-08
·
CVE-2023-41529
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Hospital Management System version 4
Description
The Hospital Management System contains multiple cross-site scripting (XSS) vulnerabilities in the
func2.php file. These vulnerabilities are triggered through the fname and lname parameters.Recommendations
As a mitigation, sanitize the
fname and lname parameters in the func2.php file to prevent the injection of malicious scripts.Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hospital Management System