2 matches found
CVE-2023-3853
CVE-2023-3853 affects phpscriptpoint BloodBank 1.1. The connected sources consistently describe a Cross-Site Scripting vulnerability in BloodBank 1.1 arising from unsafely processed data in the file page.php, enabling injection of arbitrary HTML/ scripts. The issue is exploitable remotely (attack...
CVE-2023-3854
CVE-2023-3854 affects phpscriptpoint BloodBank 1.1. The vulnerability is an SQL injection in the /search endpoint’s POST Parameter Handler, where manipulating the country, city, or blood_group_id arguments enables remote exploitation. Multiple sources corroborate the issue but do not provide a fi...