exploitDog

CVE-2024-48704

Опубликовано: 23 мая 2025

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Phpgurukul Medical Card Generation System v1.0 is vulnerable to HTML Injection in admin/contactus.php via the parameter pagedes.

Ссылки

https://github.com/0xBhushan/Writeups/blob/main/CVE/phpGurukul/Medical%20Card%20Generation%20System/HTML%20Injection%28pagedes%29.pdf
Exploit
Third Party Advisory
https://github.com/0xBhushan/Writeups/blob/main/CVE/phpGurukul/Medical%20Card%20Generation%20System/HTML%20Injection%28pagedes%29.pdf
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpgurukul:medical_card_generation_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 12%

0.00042

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-2h3c-3h32-6j65

CVSS3: 6.1

github

4 месяца назад

Phpgurukul Medical Card Generation System v1.0 is vulnerable to HTML Injection in admin/contactus.php via the parameter pagedes.

EPSS

Процентиль: 12%

0.00042

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79