CNNVD-202506-3175 Information
CNNVD ID
CNNVD-202506-3175
Related CVE
- CNNVD Published: 2025-06-25
Description (Chinese)
PHPGurukul Hospital Management System是PHPGurukul公司的一套基于PHP和MySQL的医院管理系统。 PHPGurukul Hospital Management System 4.0版本存在代码注入漏洞,该漏洞源于文件/doctor/manage-patient.php对参数Name处理不当,可能导致跨站脚本攻击。
Description (English)
PHPGurukul Hospitament System is a PHPGurukul-based hospital management system based on PHP and MySQL. PHPGurukul HSystem version 4.0 has a code-injecting loophole, which stems from the mishandling of the file/doctor/manage-patient.php parameterName, which may lead to a cross-site script attack.
Hazard Level
Critical
Vulnerability Type
代码注入
Affected Vendor
PHPGurukul
Published
2025-06-25
Last Modified
2026-02-24
References
https://vuldb.com/?id.313831 https://github.com/Vanshdhawan188/Stored-XSS-Hospital-Management/blob/main/Stored-XSS-Hospital-Management.md https://phpgurukul.com/ https://vuldb.com/?ctiid.313831 https://vuldb.com/?submit.602005 https://nvd.nist.gov/vuln/detail/CVE-2025-6613
Share on: