CVE-2023-46020

Publication date

2023-11-13 00:00:00

Family

mitre

State

PUBLISHED

Description

Cross Site Scripting (XSS) in updateprofile.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the rename, remail, rphone and rcity parameters.