CVE-2025-2033

Name of the Vulnerable Software and Affected Versions code-projects Blood Bank Management System version 1.0

Description A critical issue was found in the code-projects Blood Bank Management System. The problem is related to the manipulation of the donor id argument in the /user dashboard/view donor.php file, which leads to SQL injection. This issue can be exploited remotely.

Recommendations For code-projects Blood Bank Management System version 1.0, as a temporary workaround, consider restricting access to the /user dashboard/view donor.php file or validating and sanitizing the donor id argument to prevent SQL injection attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.