| tiêu đề | PHPGurukul Blood Bank & Donor Management System 2.4 Cross Site Scripting |
|---|
| Mô tả | The 'searchdata' parameter in the /admin/request-received-bydonar.php file of PHPGurukul Blood Bank & Donor Management System v2.4 is vulnerable to Reflected Cross-Site Scripting (XSS). This vulnerability is a result of inadequate input validation and output sanitization of user-provided data. An attacker could exploit this flaw by injecting malicious scripts into the searchdata parameter. When a victim visits a crafted URL containing the payload, the malicious script is reflected by the server and executed in the victim’s browser. |
|---|
| Nguồn | ⚠️ https://github.com/f1rstb100d/CVE/issues/22 |
|---|
| Người dùng | Anonymous User |
|---|
| Đệ trình | 26/03/2026 03:11 (cách đây 26 ngày) |
|---|
| Kiểm duyệt | 08/04/2026 19:28 (14 days later) |
|---|
| Trạng thái | Bản sao |
|---|
| Mục VulDB | 250581 [Blood Bank & Donor Management 1.0 request-received-bydonar.php Tập lệnh chéo trang] |
|---|
| điểm | 0 |
|---|