EIP-2026-107622
PRE-CVEHospital Management System v1.0 - Stored Cross Site Scripting (XSS)
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-107622. PoCs published by Sandeep Vishwakarma.
AI-analyzed exploit summary This exploit demonstrates a stored XSS vulnerability in Hospital Management System v1.0. The PoC shows how an attacker can inject malicious JavaScript payloads into patient information fields, which are then stored and executed when accessed.
Description
Hospital Management System v1.0 - Stored Cross Site Scripting (XSS)
Exploits (1)
exploitdb
WORKING POC
by Sandeep Vishwakarma · textwebappsphp
https://www.exploit-db.com/exploits/51945
This exploit demonstrates a stored XSS vulnerability in Hospital Management System v1.0. The PoC shows how an attacker can inject malicious JavaScript payloads into patient information fields, which are then stored and executed when accessed.
Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target:
Hospital Management System v1.0
Auth required
Prerequisites:
Access to a valid receptionist account · Ability to submit patient information
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026