diveshlunker/BloodX

Releases0

Stars11

A website with php as a backend to manage blood bank and many other functionalities.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-37156 ↗	Feb 11, 2026Wednesday, 11 February 2026, 21:16	6.5 MEDIUM	—
BloodX 1.0 contains an authentication bypass vulnerability in login.php that allows attackers to access the dashboard without valid credentials. Attackers can exploit the vulnerability by sending a crafted payload with '=''or' parameters to bypass login authentication and gain unauthorized access.
CVE-2020-29282 ↗	Dec 2, 2020Wednesday, 2 December 2020, 22:15	9.8 CRITICAL	7.5 HIGH
SQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication.