← Back

Blood Bank And Donation Management System

blood_bank_and_donation_management_system

Vendor: Varunsardana004 • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-11481
1Varunsardana004
1Blood Bank And Donation Management System
Apr 29, 2026
Oct 8, 2025
2.1 LOW· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
A flaw has been found in varunsardana004 Blood-Bank-And-Donation-Management-System up to dc9e0393d826fbc85fad9755b5bc12cba1919df2. The impacted element is an unknown function of the file /donate_blood.php. Executing mani...Show more
A flaw has been found in varunsardana004 Blood-Bank-And-Donation-Management-System up to dc9e0393d826fbc85fad9755b5bc12cba1919df2. The impacted element is an unknown function of the file /donate_blood.php. Executing manipulation of the argument fullname can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed.Show less
CVE-2024-45985
1Varunsardana004
1Blood Bank And Donation Management System
Jun 17, 2026
Sep 26, 2024
N/A· v4
4.7 MEDIUM· v3
N/A· v2
A Cross Site Scripting (XSS) vulnerability in update_contact.php of Blood Bank and Donation Management System v1.0 allows an attacker to inject malicious scripts via the name parameter of the update_contact.php
CVE-2024-45984
1Varunsardana004
1Blood Bank And Donation Management System
Jun 17, 2026
Sep 26, 2024
N/A· v4
4.7 MEDIUM· v3
N/A· v2
A Cross Site Scripting (XSS) vulnerability in add_donor.php of Blood Bank And Donation Management System 1.0 allows an attacker to inject malicious scripts that will be executed when the Donor List is viewed.
CVE-2024-42560
1Varunsardana004
1Blood Bank And Donation Management System
Jun 17, 2026
Aug 20, 2024
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A cross-site scripting (XSS) vulnerability in the component update_page_details.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payl...Show more
A cross-site scripting (XSS) vulnerability in the component update_page_details.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter.Show less