CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3482 matches found

Positive Technologies•added 2023/11/13 12:0 a.m.•3 views

PT-2023-29799 · Unknown · Code-Projects Blood Bank

Name of the Vulnerable Software and Affected Versions: Code-Projects Blood Bank version 1.0 Description: The issue allows attackers to execute arbitrary SQL commands via the remail parameter in the receiverReg.php file. This can potentially lead to unauthorized access and manipulation of sensitiv...

5.5CVSS6.2AI score0.00075EPSS

Exploits5References3

CVE•added 2023/11/13 12:0 a.m.•31 views

CVE-2023-46021

Code-Projects Blood Bank v1.0 is affected by a SQL Injection in cancel.php via the reqid parameter. The root cause is insufficient input validation, enabling an attacker to execute arbitrary commands (local attack; high confidentiality impact; no integrity/availability impact reported). Public re...

5.5CVSS6.3AI score0.00075EPSS

Exploits2References1Affected Software1

CVE•added 2023/11/13 12:0 a.m.•55 views

CVE-2023-46018

Summary: CVE-2023-46018 affects Code-Projects Blood Bank 1.0. The vulnerability is a SQL injection in receiverReg.php via the remail parameter due to insufficient input validation, enabling attackers to run arbitrary SQL commands and potentially access data. The exploit is demonstrated in PoCs/ex...

5.5CVSS6.1AI score0.00075EPSS

Exploits5References1Affected Software1

Vulnrichment•added 2023/11/13 12:0 a.m.•11 views

CVE-2023-46020

Cross Site Scripting XSS in updateprofile.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'rename', 'remail', 'rphone' and 'rcity' parameters...

6.4AI score0.00127EPSS

Exploits4References1

CNNVD•added 2023/11/13 12:0 a.m.•2 views

Code-Projects Blood Bank Security Breach

Code-Projects Blood Bank is a blood bank system from the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0, which stems from an SQL injection vulnerability in the parameters hemail and hpassword of the file hospitalLogin.php...

5.5CVSS7.9AI score0.00124EPSS

Exploits5References2

Positive Technologies•added 2023/11/13 12:0 a.m.•2 views

PT-2023-29803 · Unknown · Code-Projects Blood Bank

Name of the Vulnerable Software and Affected Versions: Code-Projects Blood Bank version 1.0 Description: The issue allows attackers to execute arbitrary commands via the reqid parameter in the cancel.php file. This can be exploited to run unauthorized commands. Recommendations: For Code-Projects...

5.5CVSS5.9AI score0.00075EPSS

Exploits2References3

Vulnrichment•added 2023/11/13 12:0 a.m.•9 views

CVE-2023-46015

Cross Site Scripting XSS vulnerability in index.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via 'msg' parameter in application URL...

6.4AI score0.00127EPSS

Exploits3References1

Cvelist•added 2023/11/13 12:0 a.m.•12 views

CVE-2023-46018

SQL injection vulnerability in receiverReg.php in Code-Projects Blood Bank 1.0 \allows attackers to run arbitrary SQL commands via 'remail' parameter...

6.4AI score0.00075EPSS

Exploits5References1

Cvelist•added 2023/11/13 12:0 a.m.•14 views

CVE-2023-46015

Cross Site Scripting XSS vulnerability in index.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via 'msg' parameter in application URL...

6.2AI score0.00127EPSS

Exploits3References1

Cvelist•added 2023/11/13 12:0 a.m.•19 views

CVE-2023-46021

SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary commands via the 'reqid' parameter...

6.5AI score0.00075EPSS

Exploits2References1

Cvelist•added 2023/11/13 12:0 a.m.•15 views

CVE-2023-46020

Cross Site Scripting XSS in updateprofile.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'rename', 'remail', 'rphone' and 'rcity' parameters...

6.3AI score0.00127EPSS

Exploits4References1

CVE•added 2023/11/13 12:0 a.m.•28 views

CVE-2023-46015

CVE-2023-46015 affects Code-Projects Blood Bank 1.0. It is a Reflected Cross-Site Scripting (XSS) vulnerability in index.php, exploitable via the msg parameter in the application URL. The NVD lists a CVSS v3.1 base score of 6.1 (Medium) with network attack vector, user interaction required, and p...

6.1CVSS6AI score0.00127EPSS

Exploits3References1Affected Software1

Positive Technologies•added 2023/11/13 12:0 a.m.•2 views

PT-2023-29797 · Unknown · Code-Projects Blood Bank

Name of the Vulnerable Software and Affected Versions: Code-Projects Blood Bank version 1.0 Description: The issue allows attackers to run arbitrary code via the search parameter in the application URL. This is due to a Cross Site Scripting XSS flaw in the abs.php file. Recommendations: For...

6.1CVSS6.1AI score0.00127EPSS

Exploits2References2

CVE•added 2023/11/13 12:0 a.m.•47 views

CVE-2023-46020

Code-Projects Blood Bank 1.0 is affected by a Stored XSS in updateprofile.php. The vulnerability stems from insufficient input validation/sanitization of parameters rename, remail, rphone, and rcity, allowing injected scripts to be stored and executed in other users’ browsers. Exploit details and...

6.1CVSS6.1AI score0.00127EPSS

Exploits4References1Affected Software1

Cvelist•added 2023/11/13 12:0 a.m.•13 views

CVE-2023-46016

Cross Site Scripting XSS in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'search' parameter in the application URL...

6.3AI score0.00127EPSS

Exploits2References1

Cvelist•added 2023/11/13 12:0 a.m.•16 views

CVE-2023-46014

SQL Injection vulnerability in hospitalLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'hemail' and 'hpassword' parameters...

6.5AI score0.00124EPSS

Exploits5References1

GithubExploit•added 2023/11/11 10:54 a.m.•18 views

Exploit for SQL Injection in Code-Projects Blood_Bank

CVE-2023-46022-Code-Projects-Blood-Bank-1.0-OOB-SQL-Injection-...

7.8CVSS8.4AI score0.00457EPSS

Exploits4

GithubExploit•added 2023/11/11 8:23 a.m.•11 views

Exploit for Cross-site Scripting in Code-Projects Blood_Bank

CVE-2023-46019-Code-Projects-Blood-Bank-1.0-Reflected-Cross-Si...

6.1CVSS6.8AI score0.00127EPSS

Exploits2

GithubExploit•added 2023/11/10 7:40 p.m.•11 views

Exploit for Cross-site Scripting in Code-Projects Blood_Bank

CVE-2023-46015-Code-Projects-Blood-Bank-1.0-Reflected-Cross-Si...

6.1CVSS6.8AI score0.00127EPSS

Exploits3

Positive Technologies•added 2023/11/10 12:0 a.m.•2 views

PT-2023-29795 · Unknown · Code-Projects Blood Bank

Name of the Vulnerable Software and Affected Versions: Code-Projects Blood Bank version 1.0 Description: The issue allows attackers to execute arbitrary SQL commands by exploiting the SQL Injection vulnerability in the hospitalLogin.php file. This is achieved via the hemail and hpassword...

5.5CVSS6.4AI score0.00124EPSS

Exploits5References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by