A vulnerability has been found in Hospital Management System 4.0 and classified as problematic. This vulnerability affects unknown code of the component Edit Profile Page. The manipulation of the argument username leads to cross site scripting.
This vulnerability was named CVE-2020-26628. The attack can be initiated remotely. There is no exploit available.