Lucene search
China National Vulnerability DatabaseCNVD-2022-61297HistoryJun 30, 2022 - 12:00 a.m.
Library Management System SQL Injection Vulnerability (CNVD-2022-61297)
2022-06-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
17
sql injection
library management system
qr code attendance
automatic library card generation
missing parameter
validation
externally entered sql statements
illegal sql commands
sensitive database data
vulnerability
EPSS
0.005
Percentile
75.4%
Library Management System is a library management system with QR code attendance and automatic library card generation. version 1.0 of Library Management System is vulnerable to SQL injection, which stems from a missing parameter id in the file /librarian/bookdetails.php validation of externally entered SQL statements. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
Related
prion
prion
Sql injection
2022-06-27 07:15:00
cve
cve
CVE-2022-2214
2022-06-27 07:15:07
CVE-2022-36707
2022-08-28 23:15:16
cvelist
cvelist
nvd
nvd
CVE-2022-2214
2022-06-27 07:15:07
CVE-2022-36707
2022-08-28 23:15:16