2 matches found
CVE-2025-63533
The CVE-2025-63533s entry describes an XSS vulnerability in Blood Bank Management System 1.0 affecting updateprofile.php and rprofile.php. The flaw arises because user input for rname, remail, rpassword, rphone, and rcity is not properly sanitized or encoded before being rendered in the response,...
PT-2025-48462
A cross-site scripting XSS vulnerability exists in the Blood Bank Management System 1.0 within the updateprofile.php and rprofile.php components. The application fails to properly sanitize or encode user-supplied input before rendering it in response. An attacker can inject malicious JavaScript...