509 matches found
CVE-2024-3364
CVE-2024-3364 affects SourceCodester Online Library System 1.0. The vulnerability is a cross-site scripting issue in the file admin/books/index.php , caused by manipulation of the id parameter. Impact is an XSS exposure; attack can be initiated remotely and has been publicly disclosed. Connected ...
CVE-2024-3363 SourceCodester Online Library System index.php sql injection
A vulnerability was found in SourceCodester Online Library System 1.0. It has been classified as critical. This affects an unknown part of the file admin/borrowed/index.php. The manipulation of the argument BookPublisher/BookTitle leads to sql injection. It is possible to initiate the attack...
CVE-2024-3363 SourceCodester Online Library System index.php sql injection
A vulnerability was found in SourceCodester Online Library System 1.0. It has been classified as critical. This affects an unknown part of the file admin/borrowed/index.php. The manipulation of the argument BookPublisher/BookTitle leads to sql injection. It is possible to initiate the attack...
CVE-2024-3363
SourceCodester Online Library System 1.0 contains a SQL injection vulnerability in admin/borrowed/index.php, triggered by manipulating the BookPublisher/BookTitle parameters. The issue affects an unknown part of that file and can be exploited remotely; the vulnerability has been publicly disclose...
CVE-2024-3362 SourceCodester Online Library System controller.php sql injection
A vulnerability was found in SourceCodester Online Library System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file admin/books/controller.php. The manipulation of the argument IBSN leads to sql injection. The attack may be launched remotely. The...
CVE-2024-3362 SourceCodester Online Library System controller.php sql injection
A vulnerability was found in SourceCodester Online Library System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file admin/books/controller.php. The manipulation of the argument IBSN leads to sql injection. The attack may be launched remotely. The...
CVE-2024-3362
CVE-2024-3362 affects SourceCodester Online Library System 1.0. The vulnerability is a SQL injection in the IBSN parameter of admin/books/controller.php. The issue can be triggered remotely and exploits have been publicly disclosed. Connected sources confirm the vulnerable component and the root ...
CVE-2024-3361 SourceCodester Online Library System deweydecimal.php sql injection
A vulnerability has been found in SourceCodester Online Library System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/books/deweydecimal.php. The manipulation of the argument category leads to sql injection. The attack can be launched...
CVE-2024-3361
SourceCodester Online Library System 1.0 contains a SQL injection vulnerability in the admin/books/deweydecimal.php file, exploitable via the category parameter. This CVE (CVE-2024-3361) allows remote attackers to manipulate the web app and potentially access/modify data; multiple sources confirm...
CVE-2024-3361 SourceCodester Online Library System deweydecimal.php sql injection
A vulnerability has been found in SourceCodester Online Library System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/books/deweydecimal.php. The manipulation of the argument category leads to sql injection. The attack can be launched...
CVE-2024-3360
A vulnerability, which was classified as critical, was found in SourceCodester Online Library System 1.0. Affected is an unknown function of the file admin/books/index.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2024-3360
A vulnerability, which was classified as critical, was found in SourceCodester Online Library System 1.0. Affected is an unknown function of the file admin/books/index.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2024-3360
The CVE-2024-3360 entry concerns SourceCodester Online Library System 1.0. The vulnerability is in the admin/books/index.php file, where manipulating the id parameter enables SQL injection and can be exploited remotely. Multiple sources confirm the affected file and parameter, and describe the im...
CVE-2024-3360 SourceCodester Online Library System index.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Online Library System 1.0. Affected is an unknown function of the file admin/books/index.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2024-3360 SourceCodester Online Library System index.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Online Library System 1.0. Affected is an unknown function of the file admin/books/index.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2024-3359
A vulnerability, which was classified as critical, has been found in SourceCodester Online Library System 1.0. This issue affects some unknown processing of the file admin/login.php. The manipulation of the argument useremail leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2024-3359 SourceCodester Online Library System login.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Online Library System 1.0. This issue affects some unknown processing of the file admin/login.php. The manipulation of the argument useremail leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2024-3359 SourceCodester Online Library System login.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Online Library System 1.0. This issue affects some unknown processing of the file admin/login.php. The manipulation of the argument useremail leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2024-3359
CVE-2024-3359 affects SourceCodester Online Library System 1.0. The vulnerability is in the admin/login.php file where the user_email parameter is manipulated, causing a SQL injection due to unsanitized input. Documents indicate the attack is remotely executable and that an exploit has been discl...
Online Library System SQL注入漏洞
Online Library System is an open source online library system. A SQL injection vulnerability exists in SourceCodester Online Library System version 1.0, which originates from a SQL injection vulnerability in the category parameter of the admin/books/deweydecimal.php file...