SourceCodester Blood Bank Management System login.php sql injection
CVE-2022-4737

7.3HIGH

Key Information:

Vendor: Sourcecodester
Status: Blood Bank Management System
Vendor: CVE Published:; 25 December 2022

🔔 Create Sourcecodester Vulnerability Alert

What is CVE-2022-4737?

A vulnerability was found in SourceCodester Blood Bank Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack may be initiated remotely. The identifier VDB-216773 was assigned to this vulnerability.

Affected Version(s)

Blood Bank Management System 1.0

References

https://vuldb.com/?id.216773

vdb-entrytechnical-description

https://vuldb.com/?ctiid.216773

signaturepermissions-required

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 25, 2022
Vulnerability Reserved
Dec 25, 2022

JSON