18 matches found
PT-2025-47826
Name of the Vulnerable Software and Affected Versions IDonate – Blood Donation, Request And Donor Management System plugin for WordPress versions up to and including 2.1.15 Description The IDonate plugin for WordPress is susceptible to unauthorized data modification. A missing capability check...
WordPress plugin IDonate – Blood Donation, Request And Donor Management System 授权问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. An authorization issue...
EUVD-2023-48820
Malicious code in bioql PyPI...
WordPress plugin IDonate 信息泄露漏洞
WordPress IDonate plugin is a WordPress plugin designed for blood donation management, mainly used to create blood donation related website features. An unauthorized access vulnerability exists in WordPress IDonate plugin, which stems from the application's inadequate protection of sensitive...
Blood-Bank-&-Donation-Management-System 安全漏洞
Blood-Bank-&-Donation-Management-System is a blood bank and blood donation management system by Varun Sardana, an individual developer. A security vulnerability exists in Blood-Bank-&-Donation-Management-System version 1.0, which stems from a cross-site scripting vulnerability in adddonor.php,...
Non-Profit Blood Center OneBlood Recovering from Cripping Ransomware Attack
The non-profit blood donation service suffered a ransomware attack last week and has requested urgent and emergency blood…...
CVE-2023-44484
Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php...
CVE-2023-44484
Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php...
Cross site scripting
Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php...
CVE-2023-5306
The CVE-2023-5306 entry corresponds to an issue in the Online Blood Donation Management System (version 1.0). The connected PT-2023-32026 report describes a Stored/Reflective Cross-Site Scripting vulnerability where the city parameter in users/register.php is copied into users/member.php as plain...
CVE-2023-44486
CVE-2023-44486 is marked as withdrawn by its CNA. A connected PT-Security entry describes a related issue in Online Blood Donation Management System (v1.0) with multiple stored XSS vulnerabilities in the address parameter of users/register.php, where input is reflected in the response. Recommenda...
CVE-2023-44485
Affected software: Online Blood Donation Management System ver. 1.0. Vulnerability: multiple Store XSS in the lastName parameter of users/register.php. Root cause: improper sanitization/validation of user-supplied lastName leading to script injection. Impact: potential script execution in the con...
CVE-2023-44484 Online Blood Donation Management System v1.0 - Stored Cross-Site Scripting (XSS)
Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php...
CVE-2023-44484
CVE-2023-44484 affects Online Blood Donation Management System v1.0. The vulnerability is a Stored Cross-Site Scripting (XSS) issue where the input from the firstName parameter in users/register.php is echoed unmodified into the response generated by users/member.php, resulting in plain text betw...
PT-2023-29263 · Unknown · Online Blood Donation Management System
Name of the Vulnerable Software and Affected Versions: Online Blood Donation Management System version 1.0 Description: The issue concerns multiple Store Cross-Site Scripting vulnerabilities. The address parameter of the "users/register.php" endpoint is vulnerable, as its input is copied into the...
PT-2023-29261 · Unknown · Online Blood Donation Management System
Name of the Vulnerable Software and Affected Versions: Online Blood Donation Management System version 1.0 Description: The issue concerns a Stored Cross-Site Scripting vulnerability. Specifically, the firstName parameter of the "users/register.php" resource is copied into the "users/member.php"...
PT-2023-32026 · Unknown · Online Blood Donation Management System
Name of the Vulnerable Software and Affected Versions: Online Blood Donation Management System version 1.0 Description: The issue concerns multiple Store Cross-Site Scripting vulnerabilities. The city parameter of the "users/register.php" resource is copied into the "users/member.php" document as...
PT-2023-29262 · Unknown · Online Blood Donation Management System
Name of the Vulnerable Software and Affected Versions: Online Blood Donation Management System version 1.0 Description: The issue concerns multiple Store Cross-Site Scripting vulnerabilities. The lastName parameter of the users/register.php endpoint is vulnerable. Recommendations: For Online Bloo...