A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
https://codeastro.com/ | Product |
https://github.com/Vanshdhawan188/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors-Page/blob/main/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors%20Page.md | Exploit Mitigation Third Party Advisory |
https://vuldb.com/?ctiid.315091 | Permissions Required |
https://vuldb.com/?id.315091 | Third Party Advisory VDB Entry |
https://vuldb.com/?submit.606216 | Third Party Advisory VDB Entry |
https://github.com/Vanshdhawan188/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors-Page/blob/main/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors%20Page.md | Exploit Mitigation Third Party Advisory |
Configurations
History
08 Jul 2025, 19:07
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:codeastro:simple_hospital_management_system:1.0:*:*:*:*:*:*:* | |
First Time |
Codeastro simple Hospital Management System
Codeastro |
|
References | () https://codeastro.com/ - Product | |
References | () https://github.com/Vanshdhawan188/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors-Page/blob/main/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors%20Page.md - Exploit, Mitigation, Third Party Advisory | |
References | () https://vuldb.com/?ctiid.315091 - Permissions Required | |
References | () https://vuldb.com/?id.315091 - Third Party Advisory, VDB Entry | |
References | () https://vuldb.com/?submit.606216 - Third Party Advisory, VDB Entry |
08 Jul 2025, 18:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/Vanshdhawan188/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors-Page/blob/main/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors%20Page.md - |
08 Jul 2025, 16:18
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
08 Jul 2025, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-07-08 00:15
Updated : 2025-07-08 19:07
NVD link : CVE-2025-7153
Mitre link : CVE-2025-7153
CVE.ORG link : CVE-2025-7153
JSON object : View
Products Affected
codeastro
- simple_hospital_management_system