CVE-2024-51107
23.05.2025, 15:15
Multiple stored cross-site scripting (XSS) vulnerabilities in the component /mcgs/admin/contactus.php of PHPGURUKUL Medical Card Generation System using PHP and MySQL v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the pagetitle, pagedes, and email parameters.
| Vendor | Product | Version |
|---|---|---|
| anujk305 | medical_card_generation_system | 1.0 |
𝑥
= Vulnerable software versions