Medium severity6.3NVD Advisory· Published Oct 8, 2025· Updated Apr 29, 2026
CVE-2025-11481
CVE-2025-11481
Description
A flaw has been found in varunsardana004 Blood-Bank-And-Donation-Management-System up to dc9e0393d826fbc85fad9755b5bc12cba1919df2. The impacted element is an unknown function of the file /donate_blood.php. Executing manipulation of the argument fullname can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed.
Affected products
1- cpe:2.3:a:varunsardana004:blood_bank_and_donation_management_system:*:*:*:*:*:*:*:*Range: <=2021-03-18
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/sanin-s1r3n/CVE-Research/blob/main/CVE-3nvdExploitThird Party Advisory
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.