Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-36203

Disclosure Date: August 31, 2022 (last updated October 08, 2023)
Doctor's Appointment System 1.0 is vulnerable to Cross Site Scripting (XSS) via the admin panel. In addition, it leads to takeover the administrator account by stealing the cookie via XSS.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0