A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank Management System 1.0. Affected by this issue is some unknown functionality of the file /user_dashboard/donor.php. The manipulation of the argument name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://code-projects.org/ | Product |
| https://github.com/intercpt/XSS1/blob/main/XSS.md | Exploit |
| https://github.com/intercpt/XSS1/blob/main/XSS.md | Exploit |
| https://vuldb.com/?ctiid.298568 | Permissions Required VDB Entry |
| https://vuldb.com/?id.298568 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.512163 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
03 Apr 2025, 13:32
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Blood Bank Management System Project
Blood Bank Management System Project blood Bank Management System |
|
| CPE | cpe:2.3:a:blood_bank_management_system_project:blood_bank_management_system:1.0:*:*:*:*:*:*:* | |
| References | () https://code-projects.org/ - Product | |
| References | () https://vuldb.com/?id.298568 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.512163 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?ctiid.298568 - Permissions Required, VDB Entry | |
| References | () https://github.com/intercpt/XSS1/blob/main/XSS.md - Exploit |
05 Mar 2025, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-79 |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
05 Mar 2025, 02:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-03-05 02:15
Updated : 2025-04-03 13:32
NVD link : CVE-2025-1967
Mitre link : CVE-2025-1967
JSON object : View
Products Affected
blood_bank_management_system_project
- blood_bank_management_system
CWE
No CWE.