CVE-2022-25493

HMS v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via treatmentrecord.php.

CVE-2021-38757

Persistent cross-site scripting (XSS) in Hospital Management System targeted towards web admin through contact.php.

CVE-2021-38756

Persistent cross-site scripting (XSS) in Hospital Management System targeted towards web admin through prescribe.php.

CVE-2023-34651

PHPgurukl Hospital Management System v.1.0 is vulnerable to Cross Site Scripting (XSS).