Security Advisory

CVE-2025-63532

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-01 00:00:00

Last updated 2025-12-01 18:26:47

Assigner mitre

State PUBLISHED

Description

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the cancel.php component. The application fails to properly sanitize user-supplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass authentication and gain unauthorized access to the system.

← Browse all CVEs View on cve.org ↗