Lucene search
K

393 matches found

RedhatCVE
RedhatCVE
added 2026/06/09 2:59 p.m.13 views

CVE-2026-11521

A security vulnerability has been detected in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948. This affects an unknown part of the file src/main/java/com/alien/bank/management/system/controller/TransactionController.java of the component Transaction...

6.5CVSS5.1AI score0.00272EPSS
Exploits0References1
NVD
NVD
added 2026/06/08 3:16 p.m.11 views

CVE-2026-11521

A security vulnerability has been detected in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948. This affects an unknown part of the file src/main/java/com/alien/bank/management/system/controller/TransactionController.java of the component Transaction...

6.5CVSS0.00272EPSS
Exploits0References6
CVE
CVE
added 2026/06/08 2:15 p.m.18 views

CVE-2026-11521

Mohammed-eid35 bank-management-system-springboot (Transaction Endpoint) has a vulnerability in TransactionController.java leading to improper authorization. A remote attacker could exploit it, and public PoCs exist per the CVE metrics. Affected version details are not provided due to rolling rele...

6.5CVSS6.1AI score0.00272EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/08 2:15 p.m.9 views

CVE-2026-11521

A security vulnerability has been detected in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948. This affects an unknown part of the file src/main/java/com/alien/bank/management/system/controller/TransactionController.java of the component Transaction...

6.5CVSS6.1AI score0.00272EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/06/08 2:15 p.m.6 views

CVE-2026-11521 Mohammed-eid35 bank-management-system-springboot Transaction Endpoint TransactionController.java improper authorization

A security vulnerability has been detected in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948. This affects an unknown part of the file src/main/java/com/alien/bank/management/system/controller/TransactionController.java of the component Transaction...

6.5CVSS6.1AI score0.00272EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/08 2:15 p.m.10 views

EUVD-2026-35075

A security vulnerability has been detected in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948. This affects an unknown part of the file src/main/java/com/alien/bank/management/system/controller/TransactionController.java of the component Transaction...

6.5CVSS6.1AI score0.00272EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/08 2:15 p.m.39 views

CVE-2026-11521 Mohammed-eid35 bank-management-system-springboot Transaction Endpoint TransactionController.java improper authorization

A security vulnerability has been detected in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948. This affects an unknown part of the file src/main/java/com/alien/bank/management/system/controller/TransactionController.java of the component Transaction...

6.5CVSS0.00272EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.10 views

Bank Management System 安全漏洞

Bank Management System is a banking management system developed by Alien developers. There is a security vulnerability in Bank Management System, which stems from operations in the TransactionEndpoint component file...

6.5CVSS6.3AI score0.00272EPSS
Exploits0References2
NVD
NVD
added 2026/06/01 11:16 a.m.12 views

CVE-2026-10250

A security flaw has been discovered in itsourcecode Online Blood Bank Management System 1.0. The affected element is an unknown function of the file /admin/campsdetails.php. Performing a manipulation of the argument hospital results in sql injection. The attack is possible to be carried out...

7.5CVSS0.00263EPSS
Exploits0References6
NVD
NVD
added 2026/06/01 11:16 a.m.14 views

CVE-2026-10249

A vulnerability was identified in itsourcecode Online Blood Bank Management System 1.0. Impacted is an unknown function of the file /admin/viewrequest.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might...

7.5CVSS0.00269EPSS
Exploits0References6
CVE
CVE
added 2026/06/01 10:30 a.m.17 views

CVE-2026-10249

The vulnerability CVE-2026-10249 affects itsourcecode Online Blood Bank Management System 1.0, specifically an unknown function in /admin/viewrequest.php where manipulation of the ID argument triggers SQL injection. It can be exploited remotely, and a public exploit is available. The CVSS metrics...

7.5CVSS5.8AI score0.00269EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.10 views

itsourcecode Online Blood Bank Management System SQL注入漏洞

itsourcecode Online Blood Bank Management System is an open-source online blood bank management system developed by itsourcecode. Version 1.0 of the system has a SQL injection vulnerability, which stems from improper handling of the parameter ID in the file/admin/viewrequest.php, potentially...

7.5CVSS7.5AI score0.00269EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.5 views

BloodX 安全漏洞

BloodX is a blood bank management backend developed by Divesh Jain personally. Version 1.0 of BloodX contains a security vulnerability; this vulnerability stems from an authentication bypass in the login.php file, which may allow attackers to access the dashboard without valid credentials...

6.9CVSS5.8AI score0.00301EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/02 12:19 a.m.10 views

CVE-2025-63526

A cross-site scripting XSS vulnerability exists in the Blood Bank Management System within the abs.php component. The application fails to properly sanitize or encode user-supplied input before rendering it in response. An attacker can inject malicious JavaScript payloads into the msg parameter,...

8.5CVSS5.8AI score0.0028EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/02 12:19 a.m.8 views

CVE-2025-63531

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the receiverLogin.php component. The application fails to properly sanitize user-supplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the remail and rpassword fields, a...

10CVSS8.4AI score0.00587EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/02 12:19 a.m.11 views

CVE-2025-63535

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the abs.php component. The application fails to properly sanitize usersupplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass...

9.6CVSS8.4AI score0.00352EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/02 12:19 a.m.13 views

CVE-2025-63527

A cross-site scripting XSS vulnerability exists in the Blood Bank Management System 1.0 within the updateprofile.php and hprofile.php components. The application fails to properly sanitize or encode user-supplied input before rendering it in response. An attacker can inject malicious JavaScript...

8.5CVSS5.8AI score0.0028EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/02 12:19 a.m.6 views

CVE-2025-63532

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the cancel.php component. The application fails to properly sanitize user-supplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass...

9.6CVSS8.4AI score0.00352EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/02 12:19 a.m.9 views

CVE-2025-63529

A session fixation vulnerability exists in Blood Bank Management System 1.0 in login.php that allows an attacker to set or predict a user's session identifier prior to authentication. When the victim logs in, the application continues to use the attacker-supplied session ID rather than generating...

8.8CVSS7AI score0.00328EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/02 12:19 a.m.12 views

CVE-2025-63534

A cross-site scripting XSS vulnerability exists in the Blood Bank Management System 1.0 within the login.php component. The application fails to properly sanitize or encode user-supplied input before rendering it in response. An attacker can inject malicious JavaScript payloads into the msg and...

8.5CVSS5.8AI score0.00186EPSS
Exploits0References1
Rows per page
Query Builder