Medium severity6.1NVD Advisory· Published Jun 27, 2025· Updated Jun 17, 2026
CVE-2025-50367
CVE-2025-50367
Description
A stored blind XSS vulnerability exists in the Contact Page of the Phpgurukul Medical Card Generation System 1.0 mcgs/contact.php. The name field fails to properly sanitize user input, allowing an attacker to inject malicious JavaScript.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 1.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.