CVE-2026-36388 | PHPGurukul Hospital Management System 4.0 Doctor Interface edit-profile.php User Name cross site scripting

Inserito da Angelo Barbosa | Mag 7, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in PHPGurukul Hospital Management System 4.0. This impacts an unknown function of the file /hospital/hms/edit-profile.php of the component Doctor Interface. Performing a manipulation of the argument User Name results in cross site scripting.

This vulnerability is reported as CVE-2026-36388. The attack is possible to be carried out remotely. No exploit exists.

CVE-2026-36388 | PHPGurukul Hospital Management System 4.0 Doctor Interface edit-profile.php User Name cross site scripting

Post correlati

CVE-2021-47121 | Linux Kernel up to 5.12.9 caif caif_enroll_dev memory leak

CVE-2026-4251 | CityData CityChat up to 0.12.6 on Android ai.citydata.citychat credentials.json credentials storage

CVE-2025-4736 | PHPGurukul Daily Expense Tracker 1.1 /register.php email sql injection

CVE-2025-69893 | Trezor One/T/Safe up to 1.13.0/1.14.0 BIP-39 Mnemonic information exposure