CVE-2024-10418 – code-projects Blood Bank Management System infoAdd.php sql injection
https://notcve.org/view.php?id=CVE-2024-10418
A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /file/infoAdd.php. The manipulation of the argument bg leads to sql injection. The attack can be launched remotely. • https://code-projects.org https://gist.github.com/higordiego/25a103a1fe84c4db4530e68d2f998d11 https://vuldb.com/?ctiid.281959 https://vuldb.com/?id.281959 https://vuldb.com/?submit.431782 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2024-10417 – code-projects Blood Bank Management System delete.php sql injection
https://notcve.org/view.php?id=CVE-2024-10417
A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /file/delete.php. The manipulation of the argument bid leads to sql injection. It is possible to launch the attack remotely. • https://code-projects.org https://gist.github.com/higordiego/bf0cf963ec56cfe0dcaba2956352bafd https://vuldb.com/?ctiid.281958 https://vuldb.com/?id.281958 https://vuldb.com/?submit.431781 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2024-10416 – code-projects Blood Bank Management System cancel.php sql injection
https://notcve.org/view.php?id=CVE-2024-10416
A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /file/cancel.php. The manipulation of the argument reqid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. • https://code-projects.org https://gist.github.com/higordiego/18cf04067697c8ceb2cba68980139dcc https://vuldb.com/?ctiid.281957 https://vuldb.com/?id.281957 https://vuldb.com/?submit.431686 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2024-10415 – code-projects Blood Bank Management System accept.php sql injection
https://notcve.org/view.php?id=CVE-2024-10415
A vulnerability has been found in code-projects Blood Bank Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /file/accept.php. The manipulation of the argument reqid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://code-projects.org https://gist.github.com/higordiego/2aba05ef2277d85ea4148dc42189eae0 https://vuldb.com/?ctiid.281956 https://vuldb.com/?id.281956 https://vuldb.com/?submit.431685 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2024-10171 – code-projects Blood Bank System massage.php sql injection
https://notcve.org/view.php?id=CVE-2024-10171
A vulnerability, which was classified as critical, was found in code-projects Blood Bank System up to 1.0. Affected is an unknown function of the file /admin/massage.php. The manipulation of the argument bid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://code-projects.org https://github.com/cdl00/cve/blob/main/sql8-message-book.md https://vuldb.com/?ctiid.280956 https://vuldb.com/?id.280956 https://vuldb.com/?submit.426282 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •