CVE-2025-63528 in Blood Bank Management Systeminformação

Sumário

de MITRE • 01/12/2025

A cross-site scripting (XSS) vulnerability exists in the Blood Bank Management System 1.0 within the blooddinfo.php component. The application fails to properly sanitize or encode user-supplied input before rendering it in response. An attacker can inject malicious JavaScript payloads into the error parameter, which is then executed in the victim's browser when the page is viewed.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

MITRE

Reservar

27/10/2025

Divulgação

01/12/2025

Moderação

aceite

Entrada

VDB-333862

CPE

pronto

CWE

CWE-79 (confirmado)

CVSS

5.4 (NVD)

EPSS

0.00027

KEV

não

Atividades

muito baixo

Sector

Finance

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-63528
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-63528
CVE Details	https://www.cvedetails.com/cve/CVE-2025-63528/

◂ Voltar Visão Geral Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!