CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

RedhatCVE•added 2025/12/02 12:19 a.m.•2 views

CVE-2025-63535

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the abs.php component. The application fails to properly sanitize usersupplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass...

9.6CVSS8.4AI score0.00082EPSS

Exploits0References1

OSV•added 2025/12/01 3:15 p.m.•1 views

CVE-2025-63526

A cross-site scripting XSS vulnerability exists in the Blood Bank Management System within the abs.php component. The application fails to properly sanitize or encode user-supplied input before rendering it in response. An attacker can inject malicious JavaScript payloads into the msg parameter,...

5.4CVSS5.7AI score0.00027EPSS

Exploits1References3

Vulnrichment•added 2025/12/01 12:0 a.m.•3 views

CVE-2025-63526

8.5CVSS5.5AI score0.00027EPSS

Exploits1References3

Cvelist•added 2025/12/01 12:0 a.m.•5 views

CVE-2025-63535

9.6CVSS0.00082EPSS

Exploits0References3

CNNVD•added 2025/12/01 12:0 a.m.•1 views

Blood Bank Management System 安全漏洞

Blood Bank Management System is a blood bank management system by shridhar shukla individual developer. A security vulnerability exists in Blood Bank Management System version 1.0, which stems from the abs.php component not cleaning up user input and could lead to cross-site scripting attacks...

8.5CVSS6AI score0.00027EPSS

Exploits1References4

Vulnrichment•added 2025/12/01 12:0 a.m.•3 views

CVE-2025-63535

9.6CVSS8AI score0.00082EPSS

Exploits0References3

OSV•added 2023/11/13 11:15 p.m.•1 views

CVE-2023-46019

Cross Site Scripting XSS vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'error' parameter...

6.1CVSS6AI score0.00127EPSS

Exploits2References1

Prion•added 2023/11/13 11:15 p.m.•22 views

Cross site scripting

Cross Site Scripting XSS vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'error' parameter...

5.8CVSS6.4AI score0.00127EPSS

Exploits2References1Affected Software1

OSV•added 2023/11/13 10:15 p.m.•2 views

CVE-2023-46016

Cross Site Scripting XSS in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'search' parameter in the application URL...

6.1CVSS6AI score0.00127EPSS

Exploits2References1

Prion•added 2023/11/13 10:15 p.m.•18 views

Cross site scripting

Cross Site Scripting XSS in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'search' parameter in the application URL...

5.8CVSS6.5AI score0.00127EPSS

Exploits2References1Affected Software1

CNNVD•added 2023/11/13 12:0 a.m.•3 views

Code-Projects Blood Bank Security Breach

Code-Projects Blood Bank is a blood bank system for the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0, which stems from a Reflected Cross-Site Scripting XSS vulnerability in the parameter search in the file abs.php...

6.1CVSS5.8AI score0.00127EPSS

Exploits2References2

CVE•added 2023/11/13 12:0 a.m.•32 views

CVE-2023-46019

CVE-2023-46019 is a reflected XSS vulnerability in Code-Projects Blood Bank 1.0, triggered by the error parameter in abs.php. The vulnerability is caused by insufficient input validation, allowing arbitrary script injection in the user’s browser. Connected docs provide a PoC payload and confirm t...

6.1CVSS6AI score0.00127EPSS

Exploits2References1Affected Software1