Lucene search
K

48 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:48 p.m.10 views

CVE-2026-36388

A Cross-Site Scripting XSS vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker patient to inject a malicious script payload into the User Name parameter, which is stored in the application and...

5.4CVSS5.4AI score0.00133EPSS
Exploits0References1
CVE
CVE
added 2026/05/23 6:30 p.m.13 views

CVE-2018-25343

Technical details for CVE-2018-25343 are not publicly available in the provided documents. Monitor for updates.

5.3CVSS5.8AI score0.00132EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/07 6:30 p.m.15 views

EUVD-2026-28392

A Cross-Site Scripting XSS vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker patient to inject a malicious script payload into the User Name parameter, which is stored in the application and...

5.4CVSS5.7AI score0.00133EPSS
Exploits0References3
NVD
NVD
added 2026/05/07 4:16 p.m.20 views

CVE-2026-36388

A Cross-Site Scripting XSS vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker patient to inject a malicious script payload into the User Name parameter, which is stored in the application and...

5.4CVSS0.00133EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.11 views

PHPGurukul Hospital Management System 跨站脚本漏洞

PHPGurukul Hospital Management System is a hospital management system developed by PHPGurukul company, based on PHP and MySQL technologies. The PHPGurukul Hospital Management System v4.0 version has a cross-site scripting vulnerability. This vulnerability stems from the...

5.4CVSS5.6AI score0.00133EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/07 12:0 a.m.8 views

CVE-2026-36388

A Cross-Site Scripting XSS vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker patient to inject a malicious script payload into the User Name parameter, which is stored in the application and...

5.4CVSS5.7AI score0.00133EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/07 12:0 a.m.33 views

CVE-2026-36388

A Cross-Site Scripting XSS vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker patient to inject a malicious script payload into the User Name parameter, which is stored in the application and...

0.00133EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/07 12:0 a.m.12 views

CVE-2026-36388

A Cross-Site Scripting XSS vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker patient to inject a malicious script payload into the User Name parameter, which is stored in the application and...

5.7AI score0.00133EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.24 views

PT-2026-38450

A Cross-Site Scripting XSS vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker patient to inject a malicious script payload into the User Name parameter, which is stored in the application and...

5.4CVSS5.7AI score0.00133EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/17 7:3 a.m.9 views

CVE-2025-13238

A weakness has been identified in Bdtask Flight Booking Software 4. Affected by this vulnerability is an unknown functionality of the file /agent/profile/edit of the component Edit Profile Page. This manipulation causes unrestricted upload. The attack may be initiated remotely. The exploit has be...

8.8CVSS6.2AI score0.00283EPSS
Exploits1References1
OSV
OSV
added 2025/11/16 9:15 a.m.4 views

CVE-2025-13245

A vulnerability was identified in code-projects Student Information System 2.0. The impacted element is an unknown function of the file /editprofile.php. Such manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit is publicly available and might be...

5.4CVSS4.2AI score0.00224EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/16 5:32 a.m.3 views

CVE-2025-13238 Bdtask Flight Booking Software Edit Profile edit unrestricted upload

A weakness has been identified in Bdtask Flight Booking Software 4. Affected by this vulnerability is an unknown functionality of the file /agent/profile/edit of the component Edit Profile Page. This manipulation causes unrestricted upload. The attack may be initiated remotely. The exploit has be...

6.5CVSS6.2AI score0.00283EPSS
Exploits1References4
CVE
CVE
added 2025/11/16 5:32 a.m.17 views

CVE-2025-13238

CVE-2025-13238 affects Bdtask Flight Booking Software 4. The Edit Profile Page component (/agent/profile/edit) is susceptible to manipulation that enables unrestricted file uploads. The flaw can be exploited remotely and has publicly available exploit materials. Multiple sources corroborate the i...

8.8CVSS6.2AI score0.00283EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/11/16 12:0 a.m.5 views

Code-Projects Student Information System SQL注入漏洞

Student Information System is a student information system. Student Information System is vulnerable to a SQL injection vulnerability that originates from the /editprofile.php file not effectively filtering user input. No details of the vulnerability are available at this time...

8.8CVSS6.8AI score0.00314EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/11/16 12:0 a.m.7 views

PT-2025-47073

Name of the Vulnerable Software and Affected Versions Bdtask Flight Booking Software version 4 Description A flaw exists in Bdtask Flight Booking Software version 4 that allows for unrestricted file upload through the Edit Profile Page, specifically via the /agent/profile/edit file. This...

6.5CVSS6.4AI score0.00283EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/11/16 12:0 a.m.4 views

Bdtask Flight Booking Software 代码问题漏洞

Bdtask Flight Booking Software is an airline booking software from Bdtask Bangladesh. A code issue vulnerability exists in Bdtask Flight Booking Software that stems from incorrect manipulation of the component Edit Profile Page in the file /agent/profile/edit, which could lead to unlimited upload...

8.8CVSS6.4AI score0.00283EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-24576

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00757EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28886

Malicious code in bioql PyPI...

5.4CVSS5AI score0.00257EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2025/09/03 1:22 a.m.6 views

CVE-2025-9754

A flaw has been found in Campcodes Online Hospital Management System 1.0. The impacted element is an unknown function of the file /edit-profile.php of the component Edit Profile Page. Executing manipulation of the argument Username can lead to cross site scripting. The attack may be launched...

5.4CVSS5.3AI score0.00257EPSS
Exploits2References1
OSV
OSV
added 2025/09/01 2:15 a.m.3 views

CVE-2025-9754

A flaw has been found in Campcodes Online Hospital Management System 1.0. The impacted element is an unknown function of the file /edit-profile.php of the component Edit Profile Page. Executing manipulation of the argument Username can lead to cross site scripting. The attack may be launched...

5.4CVSS4AI score0.00257EPSS
Exploits2References5
Rows per page
Query Builder