CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3502 matches found

Prion•added 2023/11/13 10:15 p.m.•14 views

Cross site scripting

Cross Site Scripting XSS vulnerability in index.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via 'msg' parameter in application URL...

5.8CVSS6.4AI score0.00471EPSS

Exploits3References1Affected Software1

Prion•added 2023/11/13 10:15 p.m.•22 views

Cross site scripting

Cross Site Scripting XSS in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'search' parameter in the application URL...

5.8CVSS6.5AI score0.00471EPSS

Exploits2References1Affected Software1

Prion•added 2023/11/13 10:15 p.m.•17 views

Sql injection

SQL Injection vulnerability in receiverLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'remail' and 'rpassword' parameters...

1.7CVSS8.7AI score0.00355EPSS

Exploits5References1Affected Software1

CNNVD•added 2023/11/13 12:0 a.m.•4 views

Code-Projects Blood Bank Security Breach

Code-Projects Blood Bank is a blood bank system from the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0, which stems from a SQL injection vulnerability in the parameter reqid of the file cancel.php...

5.5CVSS7.9AI score0.00349EPSS

Exploits2References2

CNNVD•added 2023/11/13 12:0 a.m.•4 views

Code-Projects Blood Bank Cross-Site Scripting Vulnerability

Code-Projects Blood Bank is a blood bank system from the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0, which stems from a stored cross-site scripting XSS vulnerability in the rename and other parameters of the file updateprofile.php...

6.1CVSS5.7AI score0.00479EPSS

Exploits4References3

CNNVD•added 2023/11/13 12:0 a.m.•3 views

Code-Projects Blood Bank Security Breach

Code-Projects Blood Bank is a blood bank system from the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0, which stems from an SQL injection vulnerability in the parameters hemail and hpassword of the file hospitalLogin.php...

5.5CVSS7.9AI score0.00394EPSS

Exploits5References2

CNNVD•added 2023/11/13 12:0 a.m.•5 views

Code-Projects Blood Bank Security Breach

Code-Projects Blood Bank is a blood bank system for the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0, which stems from a Reflected Cross-Site Scripting XSS vulnerability in the parameter search in the file abs.php...

6.1CVSS5.8AI score0.00471EPSS

Exploits2References2

CNNVD•added 2023/11/13 12:0 a.m.•4 views

Code-Projects Blood Bank Security Breach

5.5CVSS7.9AI score0.00355EPSS

Exploits5References2

CNNVD•added 2023/11/13 12:0 a.m.•3 views

Code-Projects Blood Bank SQL Injection Vulnerability

Code-Projects Blood Bank is a blood bank system for the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0, which originates from a SQL injection vulnerability in the parameter recmail of the file receiverReg.php...

5.5CVSS7.9AI score0.00355EPSS

Exploits5References3

CVE•added 2023/11/13 12:0 a.m.•63 views

CVE-2023-46018

Summary: CVE-2023-46018 affects Code-Projects Blood Bank 1.0. The vulnerability is a SQL injection in receiverReg.php via the remail parameter due to insufficient input validation, enabling attackers to run arbitrary SQL commands and potentially access data. The exploit is demonstrated in PoCs/ex...

5.5CVSS6.1AI score0.00355EPSS

Exploits5References1Affected Software1

CVE•added 2023/11/13 12:0 a.m.•39 views

CVE-2023-46019

CVE-2023-46019 is a reflected XSS vulnerability in Code-Projects Blood Bank 1.0, triggered by the error parameter in abs.php. The vulnerability is caused by insufficient input validation, allowing arbitrary script injection in the user’s browser. Connected docs provide a PoC payload and confirm t...

6.1CVSS6AI score0.00471EPSS

Exploits2References1Affected Software1

CVE•added 2023/11/13 12:0 a.m.•34 views

CVE-2023-46015

CVE-2023-46015 affects Code-Projects Blood Bank 1.0. It is a Reflected Cross-Site Scripting (XSS) vulnerability in index.php, exploitable via the msg parameter in the application URL. The NVD lists a CVSS v3.1 base score of 6.1 (Medium) with network attack vector, user interaction required, and p...

6.1CVSS6AI score0.00471EPSS

Exploits3References1Affected Software1

CVE•added 2023/11/13 12:0 a.m.•41 views

CVE-2023-46021

Code-Projects Blood Bank v1.0 is affected by a SQL Injection in cancel.php via the reqid parameter. The root cause is insufficient input validation, enabling an attacker to execute arbitrary commands (local attack; high confidentiality impact; no integrity/availability impact reported). Public re...

5.5CVSS6.3AI score0.00349EPSS

Exploits2References1Affected Software1

CVE•added 2023/11/13 12:0 a.m.•58 views

CVE-2023-46016

Code-Projects Blood Bank 1.0 is vulnerable to a reflected XSS in abs.php via the search parameter. The issue stems from insufficient input sanitization, allowing an attacker to inject and execute arbitrary script in a victim’s browser. A PoC exploit is provided showing the attack payload and affe...

6.1CVSS6.1AI score0.00471EPSS

Exploits2References1Affected Software1

CVE•added 2023/11/13 12:0 a.m.•54 views

CVE-2023-46020

Code-Projects Blood Bank 1.0 is affected by a Stored XSS in updateprofile.php. The vulnerability stems from insufficient input validation/sanitization of parameters rename, remail, rphone, and rcity, allowing injected scripts to be stored and executed in other users’ browsers. Exploit details and...

6.1CVSS6.1AI score0.00479EPSS

Exploits4References1Affected Software1

CVE•added 2023/11/13 12:0 a.m.•34 views

CVE-2023-46017

CVE-2023-46017 affects Code-Projects Blood Bank 1.0. The vulnerability is an SQL injection in receiverLogin.php via the remail/rpassword parameters, enabling attackers to execute arbitrary SQL commands. Reported PoC details show local exploitation against both login paths (receiverLogin.php and h...

5.5CVSS6.2AI score0.00355EPSS

Exploits5References1Affected Software1

Vulnrichment•added 2023/11/13 12:0 a.m.•12 views

CVE-2023-46020

Cross Site Scripting XSS in updateprofile.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'rename', 'remail', 'rphone' and 'rcity' parameters...

6.4AI score0.00479EPSS

Exploits4References1

Vulnrichment•added 2023/11/13 12:0 a.m.•10 views

CVE-2023-46019

Cross Site Scripting XSS vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'error' parameter...

6.2AI score0.00471EPSS

Exploits2References1

Vulnrichment•added 2023/11/13 12:0 a.m.•15 views

CVE-2023-46017

SQL Injection vulnerability in receiverLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'remail' and 'rpassword' parameters...

8.6AI score0.00355EPSS

Exploits5References1

Vulnrichment•added 2023/11/13 12:0 a.m.•14 views

CVE-2023-46018

SQL injection vulnerability in receiverReg.php in Code-Projects Blood Bank 1.0 \allows attackers to run arbitrary SQL commands via 'remail' parameter...

8.4AI score0.00355EPSS

Exploits5References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by