CVE-2024-10448 | code-projects Blood Bank Management System 1.0 /file/delete.php bid cross-site request forgery

Inserito da Angelo Barbosa | Ott 28, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank Management System 1.0. Affected by this issue is some unknown functionality of the file /file/delete.php. The manipulation of the argument bid leads to cross-site request forgery.

This vulnerability is handled as CVE-2024-10448. The attack may be launched remotely. Furthermore, there is an exploit available.

Other endpoints might be affected as well.

CVE-2024-10448 | code-projects Blood Bank Management System 1.0 /file/delete.php bid cross-site request forgery

Post correlati

CVE-2024-44309 | Apple Safari on Intel Cookie cross site scripting

CVE-2023-5915 | Yokogawa STARDOM FCN-FJC up to R4.31 Packet resource consumption (icsa-23-334-02)

CVE-2024-28755 | mbed TLS up to 3.5.x API mbedtls_ssl_session_reset inadequate encryption

CVE-2024-1695 | HP Application Enabling Software Driver Privilege Escalation