CVE-2024-7303

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jul 31, 2024

Updated: Aug 12, 2024

CWE ID 79

Summary

CVE-2024-7303 is a newly disclosed vulnerability affecting the Online Blood Bank Management System 1.0. The issue lies within the processing of the /request.php component, specifically the Address/bloodgroup argument. This vulnerability can be exploited through cross-site scripting (XSS), enabling remote attackers to inject malicious code into web pages viewed by other users. The exploit has been made public, increasing the risk of widespread attacks. VDB-273185 is the identifier assigned to this problematic vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xWQXlH
https://www.cve.org/CVERecord?id=CVE-2024-7303
https://nvd.nist.gov/vuln/detail/CVE-2024-7303

Back to Vulnerability Database

CVE-2024-7303

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations