11 matches found
CVE-2025-3307
CVE-2025-3307 affects code-projects Blood Bank Management System 1.0. A vulnerability exists in the reset.php file where manipulation of the useremail parameter enables SQL injection, exploitable remotely. Public disclosures and multiple sources corroborate an active risk, with CVSS metrics indic...
CVE-2025-2038
CVE-2025-2038 affects code-projects Blood Bank Management System 1.0. The vulnerability targets the /upload/ processing, where manipulation leads to information disclosure via directory listing. Details indicate a remote, unauthenticated access path with low to moderate integrity/confidentiality ...
CVE-2025-2039
The CVE-2025-2039 entry concerns code-projects Blood Bank Management System 1.0. Affected is an unknown function of /admin/delete_members.php where manipulation of the member_id parameter enables SQL injection. The vulnerability can be exploited remotely and exploits have been disclosed publicly....
CVE-2025-3306
The CVE-2025-3306 entry concerns code-projects Blood Bank Management System 1.0. Affected component/file: /don.php; root cause: manipulation of the argument fullname leads to SQL injection. This vulnerability can be exploited remotely and may affect other parameters. Multiple connected sources co...
CVE-2025-2037
CVE-2025-2037 affects code-projects Blood Bank Management System 1.0. The vulnerability lies in the /user_dashboard/delete_requester.php file, where manipulation of the requester_id parameter leads to an SQL injection. The issue is exploitable remotely, and multiple sources report that the exploi...
CVE-2025-2044
The CVE-2025-2044 entry describes a SQL injection in code-projects Blood Bank Management System 1.0 via the /admin/delete_bloodGroup.php endpoint, caused by improper handling of the blood_id parameter. Exploitation can be performed remotely and the exploit has been disclosed publicly, indicating ...
CVE-2025-2390
The CVE-2025-2390 entry concerns code-projects Blood Bank Management System 1.0. The vulnerability exists in the file /user_dashboard/add_donor.php and is described as an SQL injection resulting from improper input handling. It is stated to be exploitable remotely, with the exploit disclosed publ...
CVE-2024-9035
The CVE-2024-9035 entry concerns Code-projects Blood Bank Management System 1.0. The vulnerability exists in the Admin Login component, specifically in /admin/login.php, where manipulating the username and password parameters yields a SQL injection. It is exploitable remotely and the exploit has ...
CVE-2025-2033
CVE-2025-2033 affects code-projects Blood Bank Management System 1.0. The vulnerability lies in the /user_dashboard/view_donor.php function where manipulating the donor_id parameter enables SQL injection. This is a remote, publicly disclosed issue with a high-severity impact profile observed in m...
CVE-2024-9040
CVE-2024-9040 affects code-projects Blood Bank Management System 1.0, specifically the password handling component. The issue enables cleartext storage of passwords in a file or on disk, with exploitation requiring a local attack. The CVE’s core impact is confidentiality loss and potential accoun...
CVE-2025-2054
The CVE-2025-2054 entry concerns Code-Projects Blood Bank Management System 1.0. Affected component: the file /admin/edit_state.php, where manipulation of the argument state_id enables SQL injection. Root cause: improper handling of the state_id parameter leads to injection. Impact: allows remote...