CVE-2020-36011

2021-01-26T18:15:00
ID CVE-2020-36011
Type cve
Reporter cve@mitre.org
Modified 2021-02-01T20:30:00

Description

A cross-site scripting (XSS) issue in Add Patient Form in QDOCS Smart Hospital Management System 3.1 allows a remote attacker to inject arbitrary code via the Name, Guardian Name, Email, Address, Remarks, or Any Known Allergies field.