Description

Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Chat" and "Personal Address" field on staff/register.php

Related CPE's

a

remoteclinic

remote_clinic

2.0

Vulnerable

References

https://github.com/remoteclinic/RemoteClinic/issues/16

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-79

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

5.4 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-04-21T16:15:08.893

4 years ago

Last modified

2021-04-22T17:43:26.720

4 years ago