3 matches found
CVE-2021-38152
CVE-mitre:index.php/appointment/insertpatientaddappointment in Chikitsa Patient Management System 2.0.0 allows XSS. nu11secur1ty: XSS-Stored - Brutal PWNED on Chikitsa 2.0.0 parameter "name" + User: Unrestricted File Upload ".php"...
CVE-2021-38152
index.php/appointment/insertpatientaddappointment in Chikitsa Patient Management System 2.0.0 allows XSS...
CVE-2021-38152
CVE-2021-38152 affects Chikitsa Patient Management System 2.0.0. The vulnerability is an XSS flaw in index.php/appointment/insert_patient_add_appointment, due to insufficient input sanitization. CVSS metrics recorded: CVSS v2 base score 3.5 (LOW) and CVSS v3.1 base score 5.4 (MEDIUM). Impact is l...