Medium severity6.3NVD Advisory· Published Oct 8, 2025· Updated Apr 29, 2026
CVE-2025-11481
CVE-2025-11481
Description
A flaw has been found in varunsardana004 Blood-Bank-And-Donation-Management-System up to dc9e0393d826fbc85fad9755b5bc12cba1919df2. The impacted element is an unknown function of the file /donate_blood.php. Executing manipulation of the argument fullname can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:varunsardana004:blood_bank_and_donation_management_system:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:varunsardana004:blood_bank_and_donation_management_system:*:*:*:*:*:*:*:*range: <=2021-03-18
- (no CPE)range: <= dc9e0393d826fbc85fad9755b5bc12cba1919df2
Patches
Vulnerability mechanics
References
4- github.com/sanin-s1r3n/CVE-Research/blob/main/CVE-3nvdExploitThird Party Advisory
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.