PT-2024-33174 · Unknown · Blood Bank
0Xprabh4T
·
Published
2024-10-25
·
Updated
2024-10-28
·
CVE-2024-48654
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Blood Bank version 1
Description
A Cross Site Scripting issue allows a remote attacker to execute arbitrary code via a crafted script to the "login.php" component.
Recommendations
For Blood Bank version 1, update to a version that includes a fix for this issue, as no specific workaround is provided for this version.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Blood Bank