← Back to CVEs
CVE-2024-45984
MEDIUM4.7
Description
A Cross Site Scripting (XSS) vulnerability in add_donor.php of Blood Bank And Donation Management System 1.0 allows an attacker to inject malicious scripts that will be executed when the Donor List is viewed.
CVE Details
CVSS v3.1 Score4.7
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionREQUIRED
Published9/26/2024
Last Modified5/14/2025
Sourcenvd
Honeypot Sightings0
Affected Products
varunsardana004:blood_bank_and_donation_management_system
Weaknesses (CWE)
CWE-79
References
https://github.com/soursec/CVEs/tree/main/CVE-2024-45984(cve@mitre.org)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.