Unrated severityNVD Advisory· Published Mar 3, 2024· Updated Aug 1, 2024
Bdtask Hospita AutoManager Hospital Activities Page form cross site scripting
CVE-2024-2135
Description
A vulnerability was found in Bdtask Hospita AutoManager up to 20240223 and classified as problematic. This issue affects some unknown processing of the file /hospital_activities/birth/form of the component Hospital Activities Page. The manipulation of the argument Description with the input leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-255497 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Affected products
2<=20240223+ 1 more
- (no CPE)range: <=20240223
- (no CPE)range: 20240223
Patches
Vulnerability mechanics
References
3- drive.google.com/file/d/1zi8r84r0B2F45rWSYohZ6TO-PzyNJhnG/viewmitreexploit
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
News mentions
0No linked articles in our index yet.