.. / CVE-2020-5191

Exploit for PHPGurukul Hospital Management System - Cross-Site Scripting (CVE-2020-5191)

Description:

PHPGurukul Hospital Management System in PHP 4.0 contains multiple cross-site scripting vulnerabilities. An attacker can execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site.

Nuclei Template

View the template here CVE-2020-5191.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2020/CVE-2020-5191.yaml

References:

https://github.com/ARPSyndicate/cvemon
https://www.exploit-db.com/exploits/47841
https://github.com/ARPSyndicate/kenzer-templates
https://phpgurukul.com/hospital-management-system-in-php/
https://nvd.nist.gov/vuln/detail/CVE-2020-5191

.. / CVE-2020-5191 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for PHPGurukul Hospital Management System - Cross-Site Scripting (CVE-2020-5191)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2020-5191