Multiple stored cross-site scripting (XSS) vulnerabilities in /bbdms/sign-up.php of Blood Bank & Donor Management v2.2 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Full Name, Message, or Address parameters.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/soundarkutty/Stored-xss/blob/main/poc |
History
Thu, 26 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-08T00:00:00
Updated: 2024-09-26T17:48:47.329Z
Reserved: 2023-08-30T00:00:00
Link: CVE-2023-41575
Vulnrichment
Updated: 2024-08-02T19:01:35.237Z
NVD
Status : Analyzed
Published: 2023-09-08T19:15:44.087
Modified: 2023-11-14T16:42:49.757
Link: CVE-2023-41575
Redhat
No data.