134 matches found
CVE-2022-43361
CVE-2022-43361 affects Senayan Library Management System v9.4.2. The vulnerability is a cross-site scripting (XSS) flaw exposed via the component pop_chart.php . Documentation notes the issue but provides no explicit root cause details beyond the XSS label; no public patch/version is specified in...
CVE-2022-43361
Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting XSS vulnerability via the component popchart.php...
CVE-2022-43361
Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting XSS vulnerability via the component popchart.php...
CVE-2022-38292
SLiMS Senayan Library Management System v9.4.2 was discovered to contain multiple Server-Side Request Forgeries via the components /bibliography/marcsru.php and /bibliography/z3950sru.php...
CVE-2022-38291
SLiMS Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting XSS vulnerability via the Search function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search bar...
CVE-2022-38291
SLiMS Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting XSS vulnerability via the Search function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search bar...
Server side request forgery (ssrf)
SLiMS Senayan Library Management System v9.4.2 was discovered to contain multiple Server-Side Request Forgeries via the components /bibliography/marcsru.php and /bibliography/z3950sru.php...
Cross site scripting
SLiMS Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting XSS vulnerability via the Search function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search bar...
CVE-2022-38292
SLiMS Senayan Library Management System v9.4.2 was discovered to contain multiple Server-Side Request Forgeries via the components /bibliography/marcsru.php and /bibliography/z3950sru.php...
CVE-2022-38291
SLiMS Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting XSS vulnerability via the Search function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search bar...
PT-2022-24344 · Unknown · Slims Senayan Library Management System
Name of the Vulnerable Software and Affected Versions: SLiMS Senayan Library Management System version 9.4.2 Description: The issue concerns multiple Server-Side Request Forgeries in the SLiMS Senayan Library Management System. The components /bibliography/marcsru.php and /bibliography/z3950sru.p...
PT-2022-24343 · Unknown · Slims Senayan Library Management System
Name of the Vulnerable Software and Affected Versions: SLiMS Senayan Library Management System version 9.4.2 Description: The issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search function. This enables the execution of malicious code on th...
Slims CMS Akasia 8.3.1 SQL Injection
Exploit Title : Slims CMS Akasia 8.3.1 Improper Authorization Vulnerability Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 20/05/2019 Vendor Homepage : slimsetd.id - slims.web.id Software Download Link : slims.web.id/goslims/?wpdmpro=slims-8-3-1-akasia Software...
SLiMS Arbitrary File Read Vulnerability
SLiMS 8 Akasia is an open source, free library management system. An arbitrary file read vulnerability exists in SLiMS 8 Akasia 8.3.1 and earlier versions. A remote attacker can exploit this vulnerability to read arbitrary files on the system...