CVE-2026-3170

LOW(2.4)

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N

Risk Signal Score6/100 — NIEDRIG

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

2.4

Technische Schwere

Beschreibung

A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected is an unknown function of the file /patient-search.php. The manipulation of the argument First Name/Last Name results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used.

Referenzen

https://gist.github.com/archana1122m/e2953222b47c29c8c69855f5d623267d
https://vuldb.com/?ctiid.347677
https://vuldb.com/?id.347677
https://vuldb.com/?submit.759845