Security Advisory

CVE-2023-44484

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-31 21:09:22

Last updated 2024-09-06 04:28:15

Assigner Fluid Attacks

State PUBLISHED

Description

Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The firstName parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php response.

← Browse all CVEs View on cve.org ↗