CVE-2023-7173

Description

A vulnerability, which was classified as problematic, was found in PHPGurukul Hospital Management System 1.0. This affects an unknown part of the file registration.php. The manipulation of the argument First Name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249357 was assigned to this vulnerability.

NVD

Severity: MEDIUM
CVE ID: CVE-2023-7173
CVSS Score: 5.4
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

VulDB

Severity: MEDIUM
CVE ID: CVE-2023-7173
CVSS Score: 4.3
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Refrence: NVDMITRE

Proof Of Concept

sharathc213

Refrence: GitHub