CVE-2025-3309

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Apr 6, 2025

Updated: Apr 7, 2025

CWE ID 89

CWE ID 74

Summary

CVE-2025-3309 is a newly disclosed critical vulnerability that impacts the Blood Bank Management System 1.0. The issue lies within the /admin/campsdetails.php file and enables remote attackers to execute SQL injection by manipulating the hospital argument. This vulnerability has been made public, increasing the risk of exploitation. The specific functionality affected by this issue remains unknown, but the potential consequences could be severe.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Blood Bank Management System

Affected Vendors

Code Projects

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/49XBoh
https://www.cve.org/CVERecord?id=CVE-2025-3309
https://nvd.nist.gov/vuln/detail/CVE-2025-3309

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners