CVE-2026-7619

The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More plugin for WordPress is vulnerable to generic SQL Injection via the 's' parameter in all versions up to, and including, 1.8.10.4 due to insufficient escaping on the user supplied parameter and lack of...

CVE-2026-7619 Charitable <= 1.8.10.4 - Authenticated (Custom+) SQL Injection via 's' Search Parameter

The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More plugin for WordPress is vulnerable to generic SQL Injection via the 's' parameter in all versions up to, and including, 1.8.10.4 due to insufficient escaping on the user supplied parameter and lack of...

CVE-2026-7619

The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More plugin for WordPress is vulnerable to generic SQL Injection via the 's' parameter in all versions up to, and including, 1.8.10.4 due to insufficient escaping on the user supplied parameter and lack of...

CVE-2025-11481

A flaw has been found in varunsardana004 Blood-Bank-And-Donation-Management-System up to dc9e0393d826fbc85fad9755b5bc12cba1919df2. The impacted element is an unknown function of the file /donateblood.php. Executing manipulation of the argument fullname can lead to sql injection. The attack may be...

Blood-Bank-&-Donation-Management-System 安全漏洞

Blood-Bank-&-Donation-Management-System is a blood bank and blood donation management system by Varun Sardana, an individual developer. A security vulnerability exists in Blood-Bank-&-Donation-Management-System, which stems from incorrect manipulation of the parameter fullname in the file...

PT-2025-41288

Name of the Vulnerable Software and Affected Versions varunsardana004 Blood-Bank-And-Donation-Management-System versions prior to dc9e0393d826fbc85fad9755b5bc12cba1919df2 Description A flaw exists in the Blood-Bank-And-Donation-Management-System that allows for sql injection. The issue is located...

EUVD-2023-48820

Malicious code in bioql PyPI...

CVE-2024-45984

A Cross Site Scripting XSS vulnerability in adddonor.php of Blood Bank And Donation Management System 1.0 allows an attacker to inject malicious scripts that will be executed when the Donor List is viewed...

CVE-2024-45984

A Cross Site Scripting XSS vulnerability in adddonor.php of Blood Bank And Donation Management System 1.0 allows an attacker to inject malicious scripts that will be executed when the Donor List is viewed...

CVE-2024-45985

A Cross Site Scripting XSS vulnerability in updatecontact.php of Blood Bank and Donation Management System v1.0 allows an attacker to inject malicious scripts via the name parameter of the updatecontact.php...

CVE-2024-45984

A Cross Site Scripting XSS vulnerability in adddonor.php of Blood Bank And Donation Management System 1.0 allows an attacker to inject malicious scripts that will be executed when the Donor List is viewed...

CVE-2024-42560

A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...

CVE-2024-42560

A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...

CVE-2024-42560

A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...

CVE-2023-44484

Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php...

CVE-2023-5306

The CVE-2023-5306 entry corresponds to an issue in the Online Blood Donation Management System (version 1.0). The connected PT-2023-32026 report describes a Stored/Reflective Cross-Site Scripting vulnerability where the city parameter in users/register.php is copied into users/member.php as plain...

CVE-2023-44486

CVE-2023-44486 is marked as withdrawn by its CNA. A connected PT-Security entry describes a related issue in Online Blood Donation Management System (v1.0) with multiple stored XSS vulnerabilities in the address parameter of users/register.php, where input is reflected in the response. Recommenda...

CVE-2023-44484

CVE-2023-44484 affects Online Blood Donation Management System v1.0. The vulnerability is a Stored Cross-Site Scripting (XSS) issue where the input from the firstName parameter in users/register.php is echoed unmodified into the response generated by users/member.php, resulting in plain text betw...

CVE-2023-44484 Online Blood Donation Management System v1.0 - Stored Cross-Site Scripting (XSS)

Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php...

WordPress Donation Platform for WooCommerce: Fundraising & Donation Management Plugin < 1.2.10 is vulnerable to Cross Site Request Forgery (CSRF)

Software Donation Platform for WooCommerce: Fundraising & Donation Management Type Plugin Vulnerable versions 1.2.10 Fixed in 1.2.10 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE N/A Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSI...