First published: Fri Feb 24 2023(Updated: )
A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been classified as problematic. This affects an unknown part of the component New Record Handler. The manipulation of the argument Firstname/Middlename/Lastname/Suffix/Nationality/Doctor Fullname/Doctor Suffix with the input "><script>prompt(1)</script> leads to cross site scripting. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-221739.
Credit: cna@vuldb.com cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Medical Certificate Generator App Project Medical Certificate Generator App | =1.0 | |
=1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-1006.
The severity of CVE-2023-1006 is medium with a score of 5.4.
The affected software is SourceCodester Medical Certificate Generator App version 1.0.
The vulnerability allows for cross-site scripting through the manipulation of certain arguments in the New Record Handler component.
To fix CVE-2023-1006, it is recommended to apply the latest patch or upgrade to a newer version of the SourceCodester Medical Certificate Generator App.