Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 5:6 p.m.5 views

CVE-2020-26628

A Cross-Site Scripting XSS vulnerability was discovered in Hospital Management System V4.0 which allows an attacker to execute arbitrary web scripts or HTML code via a malicious payload appended to a username on the 'Edit Profile" page and triggered by another user visiting the profile...

6.1CVSS5.8AI score0.00503EPSS
Exploits3
Circl
Circladded 2024/01/10 10:26 a.m.2 views

CVE-2020-26628

creationtimestamp| type| source ---|---|--- 2024-01-10 10:26:47+00:00| seen| https://t.me/ctinow/165680 2024-01-16 19:16:42+00:00| seen| https://t.me/ctinow/168960 2024-01-28 09:56:37+00:00| seen| https://t.me/ctinow/174872...

6.1CVSS7.1AI score0.00503EPSS
Exploits3References3
NVD
NVDadded 2024/01/10 9:15 a.m.12 views

CVE-2020-26628

A Cross-Site Scripting XSS vulnerability was discovered in Hospital Management System V4.0 which allows an attacker to execute arbitrary web scripts or HTML code via a malicious payload appended to a username on the 'Edit Profile" page and triggered by another user visiting the profile...

6.1CVSS5.8AI score0.00503EPSS
Exploits3References1
Vulnrichment
Vulnrichmentadded 2024/01/10 12:0 a.m.3 views

CVE-2020-26628

A Cross-Site Scripting XSS vulnerability was discovered in Hospital Management System V4.0 which allows an attacker to execute arbitrary web scripts or HTML code via a malicious payload appended to a username on the 'Edit Profile" page and triggered by another user visiting the profile...

6AI score0.00503EPSS
Exploits3References1
CVE
CVEadded 2024/01/10 12:0 a.m.46 views

CVE-2020-26628

CVE-2020-26628 affects Hospital Management System v4.0, with an XSS in the Edit Profile username field. Root cause: insufficient input filtering/escaping, allowing a malicious payload to execute when another user views the profile. Impact: arbitrary script/HTML execution in the victim’s browser (...

6.1CVSS5.8AI score0.00503EPSS
Exploits3References1Affected Software1
Packet Storm
Packet Stormadded 2023/12/22 12:0 a.m.493 views

Hospital Management System 4.0 XSS / Shell Upload / SQL Injection

Description: Mutiple vulnerabilties were discovered in Hospital Management System Affected CMS: Hospital Management System Affected Version: unread query - type something in admin remark e.g test and submit Step 3. Replace the POST body to below payload and server will respond after 5 second...

7.4AI score0.01181EPSS
Exploits6
0day.today
0day.todayadded 2023/12/22 12:0 a.m.424 views

Hospital Management System 4.0 XSS / Shell Upload / SQL Injection Vulnerabilities

Hospital Management System versions 4.0 and below suffer from cross site scripting, remote shell upload, and remote SQL injection vulnerabilities. Description: Mutiple vulnerabilties were discovered in Hospital Management System Affected CMS: Hospital Management System Affected Version: unread...

9.8CVSS8.1AI score0.01181EPSS
Exploits6
Rows per page
Query Builder