CVE-2025-7148 – CodeAstro Simple Hospital Management System Cross-Site Scripting Vulnerability

July 7, 2025

CVE ID : CVE-2025-7148

Published : July 7, 2025, 10:15 p.m. | 29 minutes ago

Description : A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Multiple parameters might be affected.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7149 – Campcodes Advanced Online Voting System SQL Injection Vulnerability

Next Article CVE-2025-7147 – CodeAstro Patient Record Management System SQL Injection

Highlights

CVE-2025-0130 – Palo Alto Networks PAN-OS Denial of Service (DoS)

May 14, 2025

CVE ID : CVE-2025-0130

Published : May 14, 2025, 6:15 p.m. | 51 minutes ago

Description : A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this condition will cause the firewall to enter maintenance mode.

This issue does not affect Cloud NGFW or Prisma Access.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Microsoft Graph CLI to be retired

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

I asked AI to modify mission-critical code, and what happened next haunts me

Why you should delete your browser extensions right now – or do this to stay safe

Dolby Vision 2 comes with big upgrades – here’s which TVs get them first

This one small feature makes this travel charger my favorite for business trips

Laracon AU 2025 Talk Titles Revealed

Laracon AU 2025 Talk Titles Revealed

Stop Writing Bad Controllers: Laravel Custom Collections Transform Your Code

Handle ownership relationships between Eloquent models with Laravel Ownable

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

How to Open Ports in Firewall on Windows Server

Google TV Remote Not Working? 5 Quick Fixes

CVE-2025-7148 – CodeAstro Simple Hospital Management System Cross-Site Scripting Vulnerability

Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

How Title Tags Help you to Rank On SERPs

CVE-2025-5330 – FreeFloat FTP Server RETR Command Handler Buffer Overflow Vulnerability

ALT Linux 11.0 Workstation: la distribuzione GNU/Linux russa con GNOME e tecnologie all’avanguardia

CVE-2025-49080 – “Absolute Secure Access Server Denial of Service Vulnerability”

CVE-2025-0130 – Palo Alto Networks PAN-OS Denial of Service (DoS)

CVE-2025-6005 – “kiCode111 like-girl SQL Injection”

CVE-2025-4318 Critical RCE in AWS Amplify Codegen UI

DistroWatch Weekly, Issue 1125

CVE-2025-7148 – CodeAstro Simple Hospital Management System Cross-Site Scripting Vulnerability

Related Posts