CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-50367

A stored blind XSS vulnerability exists in the Contact Page of the Phpgurukul Medical Card Generation System 1.0 mcgs/contact.php. The name field fails to properly sanitize user input, allowing an attacker to inject malicious JavaScript.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.5%

CVSS Severity

CVSS v3 Score 6.1

References

https://github.com/1h3ll/CVEs/blob/main/BXSS-Medicalcard_Generations_System.md

Products affected by CVE-2025-50367

Anujk305 » Medical Card Generation System » Version: 1.0

cpe:2.3:a:anujk305:medical_card_generation_system:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-50367

Products

Pricing

Contact Us