VYPR

Blood Bank

by Code Projects

CVEs (9)

  • CVE-2023-46022HigNov 14, 2023
    risk 0.54cvss 7.8epss 0.01

    SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter.

  • CVE-2023-46020MedNov 13, 2023
    risk 0.40cvss 6.1epss 0.00

    Cross Site Scripting (XSS) in updateprofile.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'rename', 'remail', 'rphone' and 'rcity' parameters.

  • CVE-2023-46019MedNov 13, 2023
    risk 0.40cvss 6.1epss 0.00

    Cross Site Scripting (XSS) vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'error' parameter.

  • CVE-2023-46016MedNov 13, 2023
    risk 0.40cvss 6.1epss 0.00

    Cross Site Scripting (XSS) in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'search' parameter in the application URL.

  • CVE-2023-46015MedNov 13, 2023
    risk 0.40cvss 6.1epss 0.00

    Cross Site Scripting (XSS) vulnerability in index.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via 'msg' parameter in application URL.

  • CVE-2023-46021MedNov 13, 2023
    risk 0.36cvss 5.5epss 0.00

    SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary commands via the 'reqid' parameter.

  • CVE-2023-46018MedNov 13, 2023
    risk 0.36cvss 5.5epss 0.00

    SQL injection vulnerability in receiverReg.php in Code-Projects Blood Bank 1.0 \allows attackers to run arbitrary SQL commands via 'remail' parameter.

  • CVE-2023-46017MedNov 13, 2023
    risk 0.36cvss 5.5epss 0.00

    SQL Injection vulnerability in receiverLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'remail' and 'rpassword' parameters.

  • CVE-2023-46014MedNov 13, 2023
    risk 0.36cvss 5.5epss 0.00

    SQL Injection vulnerability in hospitalLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'hemail' and 'hpassword' parameters.