CVE-2025-50367 Information
Jun 28, 2025
cve
Description
A stored blind XSS vulnerability exists in the Contact Page of the Phpgurukul Medical Card Generation System 1.0 mcgs/contact.php. The name field fails to properly sanitize user input allowing an attacker to inject malicious JavaScript.
Reference
https://github.com/1h3ll/CVEs/blob/main/BXSS-Medicalcard_Generations_System.md
Related CNNVD
CNNVD-202506-3579 (Published: 2025-06-27)
Share on: