484 matches found
CVE-2025-69559
code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...
CVE-2025-69559
code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...
CVE-2025-69559
code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...
PT-2026-4965
code-projects Computer Book Store 1.0 is vulnerable to File Upload in admin add.php...
CVE-2025-69559
code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...
Code-Projects Computer Book Store Security Vulnerabilities
Code-Projects Computer Book Store is an open-source computer bookstore developed by Code-Projects. Version 1.0 of Code-Projects Computer Book Store contains a security vulnerability, which stems from a file upload vulnerability in the adminadd.php file...
CVE-2025-69559
code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...
CVE-2025-69559
The CVE-2025-69559 entry concerns code-projects Computer Book Store 1.0, with a File Upload vulnerability in admin_add.php. Multiple connected sources corroborate this issue, including Red Hat, NVD, CVE List, and others. The available data identify the affected software/component as the admin_add...
EUVD-2025-206389
code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...
CVE-2025-69559
code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...
CVE-2023-49540
Book Store Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in /bsmsci/index.php/history. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the history parameter...
CVE-2023-49539
Book Store Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in /bsmsci/index.php/category. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the category parameter...
CVE-2022-37796
In Simple Online Book Store System 1.0 in /adminbook.php the Title, Author, and Description parameters are vulnerable to Cross Site ScriptingXSS...
CVE-2020-10224
An unauthenticated file upload vulnerability has been identified in adminadd.php in PHPGurukul Online Book Store 1.0. The vulnerability could be exploited by an unauthenticated remote attacker to upload content to the server, including PHP files, which could result in command execution...
CVE-2020-24115
In projectworlds Online Book Store 1.0 Use of Hard-coded Credentials in source code leads to admin panel access...
CVE-2024-2270
A vulnerability was found in keerti1924 Online-Book-Store-Website 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /signup.php. The manipulation of the argument name leads to cross site scripting. The attack may be launched remotely. The...
CVE-2024-2272
A vulnerability classified as critical was found in keerti1924 Online-Book-Store-Website 1.0. This vulnerability affects unknown code of the file /home.php of the component HTTP POST Request Handler. The manipulation of the argument productname leads to sql injection. The attack can be initiated...
CVE-2024-2267
A vulnerability was found in keerti1924 Online-Book-Store-Website 1.0 and classified as problematic. This issue affects some unknown processing of the file /shop.php. The manipulation of the argument productprice leads to business logic errors. The attack may be initiated remotely. The exploit ha...
CVE-2024-2271
A vulnerability classified as critical has been found in keerti1924 Online-Book-Store-Website 1.0. This affects an unknown part of the file /shop.php of the component HTTP POST Request Handler. The manipulation of the argument productname leads to sql injection. It is possible to initiate the...
CVE-2025-14647
A weakness has been identified in code-projects Computer Book Store 1.0. Affected is an unknown function of the file /admindelete.php. This manipulation of the argument bookisbn causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to the public...