Lucene search
+L

26 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-50277

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00471EPSS
Exploits3References1
packetstorm
packetstorm
added 2024/03/20 12:0 a.m.426 views

Blood Bank 1.0 SQL Injection

Exploit Title: Blood Bank 1.0 - 'bid' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://code-projects.org/blood-bank-in-php-with-source-code Software Link: https://download-media.code-projects.org/2020/11/BloodBankInPHPWithSourcecode.zip Version: 1.0 Tested on:...

7.8CVSS7.4AI score0.00795EPSS
Exploits4
exploitdb
exploitdb
added 2024/03/20 12:0 a.m.341 views

Blood Bank 1.0 - 'bid' SQLi

Exploit Title: Blood Bank 1.0 - 'bid' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://code-projects.org/blood-bank-in-php-with-source-code Software Link: https://download-media.code-projects.org/2020/11/BloodBankInPHPWithSourcecode.zip Version: 1.0 Tested on:...

7.8CVSS7.8AI score0.00795EPSS
Exploits4
osv
osv
added 2023/11/14 10:15 p.m.5 views

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

7.8CVSS6AI score0.00795EPSS
Exploits4References1
prion
prion
added 2023/11/14 10:15 p.m.20 views

Sql injection

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

4.3CVSS8.7AI score0.00795EPSS
Exploits4References1Affected Software1
vulnrichment
vulnrichment
added 2023/11/14 12:0 a.m.14 views

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

8.2AI score0.00795EPSS
Exploits4References1
cve
cve
added 2023/11/14 12:0 a.m.66 views

CVE-2023-46022

CVE-2023-46022 concerns Code-Projects Blood Bank v1.0, with a SQL Injection in delete.php via the bid parameter. The root cause is improper input handling in delete.php, enabling attackers to execute arbitrary SQL commands. Reported impact includes potential data exposure and unauthorized databas...

7.8CVSS8AI score0.00795EPSS
Exploits4References1Affected Software1
cvelist
cvelist
added 2023/11/14 12:0 a.m.37 views

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

8.3AI score0.00795EPSS
Exploits4References1
nvd
nvd
added 2023/11/13 10:15 p.m.38 views

CVE-2023-46014

SQL Injection vulnerability in hospitalLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'hemail' and 'hpassword' parameters...

5.5CVSS0.00394EPSS
Exploits5References1
nvd
nvd
added 2023/11/13 10:15 p.m.29 views

CVE-2023-46016

Cross Site Scripting XSS in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'search' parameter in the application URL...

6.1CVSS0.00471EPSS
Exploits2References1
attackerkb
attackerkb
added 2023/11/13 10:15 p.m.11 views

CVE-2023-46017

SQL Injection vulnerability in receiverLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'remail' and 'rpassword' parameters...

5.5CVSS6.1AI score0.00355EPSS
Exploits5References2
prion
prion
added 2023/11/13 10:15 p.m.15 views

Sql injection

SQL injection vulnerability in receiverReg.php in Code-Projects Blood Bank 1.0 \allows attackers to run arbitrary SQL commands via 'remail' parameter...

1.7CVSS8.5AI score0.00355EPSS
Exploits5References1Affected Software1
prion
prion
added 2023/11/13 10:15 p.m.28 views

Sql injection

SQL Injection vulnerability in hospitalLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'hemail' and 'hpassword' parameters...

1.7CVSS8.7AI score0.00394EPSS
Exploits5References1Affected Software1
prion
prion
added 2023/11/13 10:15 p.m.19 views

Sql injection

SQL Injection vulnerability in receiverLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'remail' and 'rpassword' parameters...

1.7CVSS8.7AI score0.00355EPSS
Exploits5References1Affected Software1
vulnrichment
vulnrichment
added 2023/11/13 12:0 a.m.15 views

CVE-2023-46018

SQL injection vulnerability in receiverReg.php in Code-Projects Blood Bank 1.0 \allows attackers to run arbitrary SQL commands via 'remail' parameter...

8.4AI score0.00355EPSS
Exploits5References1
vulnrichment
vulnrichment
added 2023/11/13 12:0 a.m.19 views

CVE-2023-46014

SQL Injection vulnerability in hospitalLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'hemail' and 'hpassword' parameters...

8.6AI score0.00394EPSS
Exploits5References1
cve
cve
added 2023/11/13 12:0 a.m.79 views

CVE-2023-46014

The CVE-2023-46014 case concerns Code-Projects Blood Bank v1.0. A SQL Injection flaw exists in hospitalLogin.php, exploitable via the hemail and hpassword parameters, enabling arbitrary SQL commands and potential authentication bypass. Technical context from connected documents confirms the vulne...

5.5CVSS6.2AI score0.00394EPSS
Exploits5References1Affected Software1
cve
cve
added 2023/11/13 12:0 a.m.44 views

CVE-2023-46021

Code-Projects Blood Bank v1.0 is affected by a SQL Injection in cancel.php via the reqid parameter. The root cause is insufficient input validation, enabling an attacker to execute arbitrary commands (local attack; high confidentiality impact; no integrity/availability impact reported). Public re...

5.5CVSS6.3AI score0.00349EPSS
Exploits2References1Affected Software1
cve
cve
added 2023/11/13 12:0 a.m.68 views

CVE-2023-46018

Summary: CVE-2023-46018 affects Code-Projects Blood Bank 1.0. The vulnerability is a SQL injection in receiverReg.php via the remail parameter due to insufficient input validation, enabling attackers to run arbitrary SQL commands and potentially access data. The exploit is demonstrated in PoCs/ex...

5.5CVSS6.1AI score0.00355EPSS
Exploits5References1Affected Software1
cve
cve
added 2023/11/13 12:0 a.m.61 views

CVE-2023-46016

Code-Projects Blood Bank 1.0 is vulnerable to a reflected XSS in abs.php via the search parameter. The issue stems from insufficient input sanitization, allowing an attacker to inject and execute arbitrary script in a victim’s browser. A PoC exploit is provided showing the attack payload and affe...

6.1CVSS6.1AI score0.00471EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder