CVE-2025-6452 – CodeAstro Patient Record Management System Cross-Site Scripting Vulnerability

June 22, 2025

CVE ID : CVE-2025-6452

Published : June 22, 2025, 3:15 a.m. | 10 hours, 28 minutes ago

Description : A vulnerability was found in CodeAstro Patient Record Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the component Generate New Report Page. The manipulation of the argument Patient Name/Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6453 – Diyhi BBS Path Traversal Vulnerability

Next Article CVE-2025-6451 – “Code-Projects Simple Online Hotel Reservation System SQL Injection”

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

Here’s how I fixed a dead Steam Deck screen — with Valve proving they still have the best customer service in gaming

Borderlands 4 drops stunning new story trailer

DistroWatch Weekly, Issue 1127

Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Understanding JavaScript Promise

Lakeflow: Revolutionizing SCD2 Pipelines with Change Data Capture (CDC)

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

Here’s how I fixed a dead Steam Deck screen — with Valve proving they still have the best customer service in gaming

Borderlands 4 drops stunning new story trailer

CVE-2025-6452 – CodeAstro Patient Record Management System Cross-Site Scripting Vulnerability

CVE-2025-52926 – Spytrap-ADB Stalkerware Detection UI Vulnerability

CVE-2025-6497 – “HTACG Tidy-html5 Assertion Vulnerability”

CVE-2025-47939 – TYPO3 File Upload Vulnerability (Unrestricted File Type Upload)

CVE-2025-28036 – TOTOLINK A950RG Remote Command Execution Vulnerability

I asked a Lenovo representative about the Legion Go S (SteamOS) price increase — This is what they told me

CVE-2025-5788 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

CVE-2025-36528 – Zohocorp ManageEngine ADAudit Plus SQL Injection Vulnerability

What Is an IP Address? A Beginner’s Guide

Windows Remote Desktop Services Vulnerability Allows Remote Code Execution

CVE-2025-23171 & CVE-2025-23172: Versa Director Bugs Open Doors to Webshell Uploads and Command Execution

CVE-2025-6452 – CodeAstro Patient Record Management System Cross-Site Scripting Vulnerability

Related Posts