19 matches found
CVE-2026-2060
A vulnerability was found in code-projects Simple Blood Donor Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /simpleblooddonor/editcampaignform.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the...
CVE-2022-38813
PHPGurukul Blood Donor Management System 1.0 does not properly restrict access to admin/dashboard.php, which allows attackers to access all data of users, delete the users, add and manage Blood Group, and Submit Report...
CVE-2025-14961
A vulnerability was detected in code-projects Simple Blood Donor Management System 1.0. The affected element is an unknown function of the file /editedcampaign.php. The manipulation of the argument campaignname results in sql injection. The attack can be executed remotely. The exploit is now publ...
CVE-2025-14960
A security vulnerability has been detected in code-projects Simple Blood Donor Management System 1.0. Impacted is an unknown function of the file /editeddonor.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...
CVE-2025-14960
A security vulnerability has been detected in code-projects Simple Blood Donor Management System 1.0. Impacted is an unknown function of the file /editeddonor.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...
CVE-2025-14960
CVE-2025-14960 affects code-projects Simple Blood Donor Management System 1.0. The vulnerability is an SQL injection in the /editeddonor.php file triggered by the Name parameter, enabling remote exploitation. Multiple sources (NVD, Red Hat, CIRCL, CVE lists) confirm the issue and disclose that an...
PT-2025-52504
Name of the Vulnerable Software and Affected Versions code-projects Simple Blood Donor Management System version 1.0 Description A flaw exists in code-projects Simple Blood Donor Management System version 1.0 that allows for remote SQL injection. The issue is located in the /editedcampaign.php...
EUVD-2024-51205
Malicious code in bioql PyPI...
CVE-2025-50487
CVE-2025-50487 affects PHPGurukul Blood Bank & Donor Management System v2.4. The vulnerability resides in the change-password.php component (/bbdms/change-password.php) due to improper session invalidation, enabling session hijacking. The CVSS 3.1 base score is 7.1 (High) with network attack vect...
CVE-2024-12941
A vulnerability was found in CodeAstro Blood Donor Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /pages/deletedannounce.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...
CVE-2024-12982
A vulnerability was found in PHPGurukul Blood Bank & Donor Management System 2.4. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /bbdms/admin/update-contactinfo.php. The manipulation of the argument Address leads to cross site scripting. The...
CVE-2024-12941
A vulnerability was found in CodeAstro Blood Donor Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /pages/deletedannounce.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...
CVE-2024-12941 CodeAstro Blood Donor Management System deletedannounce.php sql injection
A vulnerability was found in CodeAstro Blood Donor Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /pages/deletedannounce.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...
Blood Bank And Donor Management System 2.2 Cross Site Scripting
Exploit Title: Blood Bank & Donor Management System using v2.2 - Stored XSS Application: Blood Donor Management System Version: v2.2 Bugs: Stored XSS Technology: PHP Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/blood-bank-donor-management-system-free-download/...
CVE-2022-38813
PHPGurukul Blood Donor Management System 1.0 does not properly restrict access to admin/dashboard.php, which allows attackers to access all data of users, delete the users, add and manage Blood Group, and Submit Report...
CVE-2022-38813
CVE-2022-38813 affects PHPGurukul Blood Donor Management System 1.0. The issue is an improper access control that lets an authenticated user switch from a user dashboard to the admin dashboard by altering parameters in the URL (e.g., changing /user/dashboard to /admin/dashboard), enabling access ...
PHPGurukul Blood Donor Management System Cross-Site Scripting Vulnerability
The PHPGurukul Blood Donor Management System is a blood donor management system from PHPGurukul, USA. A cross-site scripting vulnerability exists in version 1.0 of the Phpgurukul Blood Donor Management System, which stems from a lack of effective filtering and escaping of user-supplied data at Ad...
CVE-2022-40470
Phpgurukul Blood Donor Management System 1.0 allows Cross Site Scripting via Add Blood Group Name Feature...
Exploit for Exposure of Resource to Wrong Sphere in Phpgurukul_Blood_Donor_Management_System_Project Phpgurukul_Blood_Donor_Management_System
CVE-2022-38813 Veritical Privilege Escalation via user parame...