CVE-2025-63525 PUBLISHED

Assigner: mitre
Reserved: 27.10.2025 Published: 01.12.2025 Updated: 01.12.2025

An issue was discovered in Blood Bank Management System 1.0 allowing authenticated attackers to perform actions with escalated privileges via crafted request to delete.php.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AC:L/AV:N/A:N/C:H/I:H/PR:L/S:C/UI:N
CVSS Score: 9.6

Attack Vector	Network	Scope	Changed
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	None

CVSS 3.1

Product Status

Vendor	n/a
Product	n/a
Versions	Version n/a is affected

References

https://github.com/Shridharshukl/Blood-Bank-Management-System
https://drive.google.com/file/d/12yeOXW_sN69QjsQtW0_k9AGqozi1s0di/view?usp=sharing
https://github.com/kiwi865/CVEs/blob/main/CVE-2025-63525.md

Problem Types

n/a text