3 matches found
CVE-2022-36547
Edoc-doctor-appointment-system v1.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability at /patient/index.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search field...
CVE-2022-36547
creationtimestamp| type| source ---|---|--- 2022-08-27 00:30:35+00:00| seen| https://t.me/cibsecurity/48929...
CVE-2022-36547
CVE-2022-36547 affects Edoc-doctor-appointment-system v1.0.1, with a reflected cross-site scripting (XSS) vulnerability in /patient/index.php. The issue allows an attacker to inject arbitrary web scripts/HTML via the Search field (user input without sufficient sanitization), as reported across mu...