A vulnerability was found in code-projects Pharmacy...
Moderate severity
Unreviewed
Published
Aug 31, 2024
to the GitHub Advisory Database
•
Updated Aug 31, 2024
Description
Published by the National Vulnerability Database
Aug 31, 2024
Published to the GitHub Advisory Database
Aug 31, 2024
Last updated
Aug 31, 2024
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php?id=userProfileEdit of the component Update My Profile Page. The manipulation of the argument fname/lname/email with the input <script>alert(1)</script> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
References