- Description
- A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the abs.php component. The application fails to properly sanitize usersupplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass authentication and gain unauthorized access to the system.
- Source
- cve@mitre.org
- NVD status
- Analyzed
- Products
- blood_bank_management_system
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-89
- Hype score
- Not currently trending
[CVE-2025-63535: CRITICAL] SQL injection vulnerability found in Blood Bank Management System 1.0 abs.php component. Unsanitized user input in SQL queries allows attackers to execute arbitrary code, bypass au...#cve,CVE-2025-63535,#cybersecurity https://t.co/1wfXAOU0br https://t.c
@CveFindCom
1 Dec 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-63535 A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the abs.php component. The application fails to properly sanitize usersupplied inp… https://t.co/DHDSVJ9Gqq
@CVEnew
1 Dec 2025
216 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:shridharshukl:blood_bank_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5B391DFD-8072-4642-9A31-9E4DE8648367",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]