Description

Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Chat" and "Personal Address" field on staff/register.php

Related CPE's

a

remoteclinic

remote_clinic

2.0

Vulnerable

References

https://github.com/remoteclinic/RemoteClinic/issues/16

ExploitThird Party Advisory

https://github.com/remoteclinic/RemoteClinic/issues/16

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-79

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

5.4 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-04-21T14:15:08.893Z

4 years ago

Last modified

2024-11-21T05:05:26.430Z

1 year ago