4 matches found
CVE-2024-7016
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Smarttek Informatics Smart Doctor's allows Stored XSS required admin privileges. This issue affects Smart Doctor: through 21.11.2024. NOTE: The vendor was contacted early about this disclosu...
CVE-2024-7016
creationtimestamp| type| source ---|---|--- 2024-11-21 12:32:46+00:00| seen| https://infosec.exchange/users/cve/statuses/113520958855732327...
CVE-2024-7016
CVE-2024-7016 concerns a Stored XSS vulnerability in Smarttek Informatics’ Smart Doctor (through version 21.11.2024). Affected software: Smart Doctor web application. Root cause: improper neutralization of input during web page generation. Impact: stored XSS with admin privileges required; detail...
CVE-2024-7016 Stored XSS in Smarttek Informatics' Smart Doctor
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Smarttek Informatics Smart Doctor's allows Stored XSS required admin privileges. This issue affects Smart Doctor: through 21.11.2024. NOTE: The vendor was contacted early about this disclosu...