VYPR
Unrated severityNVD Advisory· Published Aug 13, 2012· Updated Jun 16, 2026

CVE-2012-4262

CVE-2012-4262

Description

Multiple cross-site scripting (XSS) vulnerabilities in myCare2x allow remote attackers to inject arbitrary web script or HTML via the (1) name_last, (2) name_first, (3) name_middle, or (4) name_maiden parameter to modules/patient/mycare_pid.php; (5) favorites or (6) lang parameter to modules/nursing/mycare_ward_print.php; (7) aktion or (8) callurl parameter to modules/patient/mycare2x_pat_info.php; or (9) ln parameter to modules/drg/mycare2x_proc_search.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Hccgmbh/Mycare2x2 versions
    cpe:2.3:a:hccgmbh:mycare2x:-:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:hccgmbh:mycare2x:-:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.