10 matches found
PT-2025-41288
Name of the Vulnerable Software and Affected Versions varunsardana004 Blood-Bank-And-Donation-Management-System versions prior to dc9e0393d826fbc85fad9755b5bc12cba1919df2 Description A flaw exists in the Blood-Bank-And-Donation-Management-System that allows for sql injection. The issue is located...
CVE-2024-45984
A Cross Site Scripting XSS vulnerability in adddonor.php of Blood Bank And Donation Management System 1.0 allows an attacker to inject malicious scripts that will be executed when the Donor List is viewed...
CVE-2024-45984
A Cross Site Scripting XSS vulnerability in adddonor.php of Blood Bank And Donation Management System 1.0 allows an attacker to inject malicious scripts that will be executed when the Donor List is viewed...
CVE-2024-42560
A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...
CVE-2024-42560
A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...
CVE-2024-42560
A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...
CVE-2023-5306
The CVE-2023-5306 entry corresponds to an issue in the Online Blood Donation Management System (version 1.0). The connected PT-2023-32026 report describes a Stored/Reflective Cross-Site Scripting vulnerability where the city parameter in users/register.php is copied into users/member.php as plain...
CVE-2023-44486
CVE-2023-44486 is marked as withdrawn by its CNA. A connected PT-Security entry describes a related issue in Online Blood Donation Management System (v1.0) with multiple stored XSS vulnerabilities in the address parameter of users/register.php, where input is reflected in the response. Recommenda...
CVE-2023-44484 Online Blood Donation Management System v1.0 - Stored Cross-Site Scripting (XSS)
Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php...
CVE-2023-44484
CVE-2023-44484 affects Online Blood Donation Management System v1.0. The vulnerability is a Stored Cross-Site Scripting (XSS) issue where the input from the firstName parameter in users/register.php is echoed unmodified into the response generated by users/member.php, resulting in plain text betw...