PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data.
CPE | Name | Operator | Version |
---|---|---|---|
hospital_management_system | eq | 4.0 |