Medical Card Generation System Security Vulnerabilities and Issues — Medical Card Generation System CVE List

Lucene search

Anujk305Medical Card Generation System

3 matches found

CVE•added 2025/06/27 4:15 p.m.•8 views

CVE-2025-50367

A stored blind XSS vulnerability exists in the Contact Page of the Phpgurukul Medical Card Generation System 1.0 mcgs/contact.php. The name field fails to properly sanitize user input, allowing an attacker to inject malicious JavaScript.

6.1CVSS5.5AI score0.00034EPSS

CVE•added 2025/06/27 4:15 p.m.•8 views

CVE-2025-50369

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Manage Card functionality (/mcgs/admin/manage-card.php) of PHPGurukul Medical Card Generation System 1.0. The vulnerable endpoint allows an authorized admin to delete medical card records by sending a simple GET request without verifyi...

6.5CVSS6.7AI score0.0002EPSS

CVE•added 2025/06/27 4:15 p.m.•8 views

CVE-2025-50370

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Inquiry Management functionality /mcgs/admin/readenq.php of the Phpgurukul Medical Card Generation System 1.0. The vulnerable endpoint allows an authenticated admin to delete inquiry records via a simple GET request, without requiring ...

6.5CVSS6.6AI score0.0002EPSS