PT-2023-29262 · Unknown · Online Blood Donation Management System

Published

2023-10-31

Updated

2024-01-02

CVE-2023-44485

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Online Blood Donation Management System version 1.0

Description The issue concerns multiple Store Cross-Site Scripting vulnerabilities. The lastName parameter of the users/register.php endpoint is vulnerable.

Recommendations For Online Blood Donation Management System version 1.0, consider restricting access to the users/register.php endpoint until a fix is available. As a temporary workaround, avoid using the lastName parameter in the affected endpoint to minimize the risk of exploitation.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-44485

Affected Products

Online Blood Donation Management System

PT-2023-29262 · Unknown · Online Blood Donation Management System

CVE-2023-44485

Related Identifiers

Affected Products

References · 4