134 matches found
CVE-2023-45996
SQL injection vulnerability in Senayan Library Management Systems Slims v.9 and Bulian v.9.6.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted script to the reborrowLimit parameter in the membertype.php...
CVE-2023-45996
CVE-2023-45996 affects Senayan Library Management Systems Slims v9 and Bulian v9.6.1. A SQL injection occurs via a crafted script to the reborrowLimit parameter in member_type.php, enabling a remote attacker to obtain sensitive information and potentially execute arbitrary code. Supported details...
PT-2023-29784 · Senayan · Slims Senayan Library Management System +1
Name of the Vulnerable Software and Affected Versions: Senayan Library Management Systems Slims version 9 Senayan Library Management Systems Bulian version 9.6.1 Description: The issue allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted script to the...
CVE-2023-45996
SQL injection vulnerability in Senayan Library Management Systems Slims v.9 and Bulian v.9.6.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted script to the reborrowLimit parameter in the membertype.php...
CVE-2023-40969
Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server Side Request Forgery SSRF via admin/modules/bibliography/popp2p.php...
CVE-2023-40970
Senayan Library Management Systems SLIMS 9 Bulian v 9.6.1 is vulnerable to SQL Injection via admin/modules/circulation/loanrules.php...
CVE-2023-40969
Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server Side Request Forgery SSRF via admin/modules/bibliography/popp2p.php...
CVE-2023-40970
Senayan Library Management Systems SLIMS 9 Bulian v 9.6.1 is vulnerable to SQL Injection via admin/modules/circulation/loanrules.php...
Server side request forgery (ssrf)
Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server Side Request Forgery SSRF via admin/modules/bibliography/popp2p.php...
Sql injection
Senayan Library Management Systems SLIMS 9 Bulian v 9.6.1 is vulnerable to SQL Injection via admin/modules/circulation/loanrules.php...
CVE-2023-40969
Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server Side Request Forgery SSRF via admin/modules/bibliography/popp2p.php...
CVE-2023-40969
Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server Side Request Forgery SSRF via admin/modules/bibliography/popp2p.php...
Library Management System SQL Injection Vulnerability
Library Management System is a library management system with QR code attendance and automatic library card generation by King Albaracin Personal Developer. A security vulnerability exists in Senayan Library Management Systems SLIMS 9 Bulian v9.6.1, which stems from vulnerability to SQL injection...
PT-2023-27726 · Senayan Library Management System · Slims
Name of the Vulnerable Software and Affected Versions: Senayan Library Management Systems SLIMS 9 Bulian version 9.6.1 Description: The issue concerns SQL Injection. It affects the admin/modules/circulation/loan rules.php endpoint. Recommendations: For version 9.6.1, consider restricting access t...
PT-2023-27724 · Senayan Library Management System · Slims
Name of the Vulnerable Software and Affected Versions: Senayan Library Management Systems SLIMS 9 Bulian version 9.6.1 Description: The issue is related to Server Side Request Forgery SSRF and can be exploited via the "admin/modules/bibliography/pop p2p.php" endpoint. This allows for potentially...
CVE-2023-40970
CVE-2023-40970 affects Senayan Library Management Systems SLIMS 9 Bulian v9.6.1. The vulnerability is a SQL Injection in the endpoint admin/modules/circulation/loan_rules.php caused by unsanitized input. Documented impact is high (CVSS v3.1: 8.8; Confidentiality/Integrity/Availability all HIGH). ...
CVE-2023-40969
CVE-2023-40969 - SSRF in SLIMS 9 Bulian 9.6.1 : Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server-Side Request Forgery via admin/modules/bibliography/pop_p2p.php. Public docs consistently identify the affected component as the endpoint pop_p2p.php under the bibliogr...
CVE-2023-40970
Senayan Library Management Systems SLIMS 9 Bulian v 9.6.1 is vulnerable to SQL Injection via admin/modules/circulation/loanrules.php...
CVE-2023-29850
SENAYAN Library Management System SLiMS Bulian v9.5.2 does not strip exif data from uploaded images. This allows attackers to obtain information such as the user's geolocation and device information...
Senayan Library Management System v9.0.0 - SQL Injection
Exploit Title: Senayan Library Management System v9.0.0 - SQL Injection Author: nu11secur1ty Date: 11.09.2022 Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/download/v9.0.0/slims9bulian-9.0.0.zip Reference:...