2025-05-23 00:00:00
mitre
PUBLISHED
A reflected cross-site scripting (XSS) vulnerability in the component mcgs/download-medical-cards.php of PHPGURUKUL Medical Card Generation System using PHP and MySQL v1.0 allows attackers to execute arbitrary code in the context of a users browser via injecting a crafted payload into the searchdata parameter.