Hospital Management System version 4.0 suffers from a persistent cross site scripting vulnerability in add-patient.php. This version is already known to have persistent cross site scripting issues.
0f32b95110569ad08d44eef736c9918db9a85c43b278b2b3015335a5110a8dff