GCVE - cpe:2.3:a:codeastro:simple_hospital_management

Approved changes feed: RSS · Atom

cpe:2.3:a:codeastro:simple_hospital_management_system:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Codeastro (`f92dc1fe-f2d7-58ad-92b0-40a98a9042be`)
Product	Simple Hospital Management System (`1d9b7964-150a-560b-9578-b16a44c4e5cd`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-7153`	vulnerable	2026-06-03 15:12:30.587615	CodeAstro Simple Hospital Management System POST Parameter doctor.html cross site scripting LOW (3.5) A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Published: 2025-07-08T00:02:05.777Z Updated: 2025-07-08T17:35:02.820Z Open on db.gcve.eu Reference links https://vuldb.com/?id.315091 https://vuldb.com/?ctiid.315091 https://vuldb.com/?submit.606216 https://github.com/Vanshdhawan188/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors-Page/blob/main/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS-Doctors%20Page.md https://codeastro.com/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-7148`	vulnerable	2026-06-03 15:12:30.579579	CodeAstro Simple Hospital Management System POST Parameter patient.html cross site scripting LOW (3.5) A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Multiple parameters might be affected. Published: 2025-07-07T21:32:06.357Z Updated: 2025-07-08T14:07:01.835Z Open on db.gcve.eu Reference links https://vuldb.com/?id.315086 https://vuldb.com/?ctiid.315086 https://vuldb.com/?submit.606043 https://github.com/Vanshdhawan188/Simple-Hospital-Management-System-in-Python-CodeAstro-Patients-Stored-XSS/blob/main/Simple%20Hospital%20Management%20System%20in%20Python%20CodeAstro%20Patients%20Stored%20XSS.md https://codeastro.com/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Simple Hospital Management System

PURL mappings

Vulnerability references

Contribute