22 matches found
EUVD-2026-43295
A security vulnerability has been detected in SourceCodester Online Book Store System 1.0. Impacted is an unknown function of the file /admin/index.php?page=books of the component Book Image Upload Feature. Such manipulation leads to unrestricted upload. The attack may be performed from remote. T...
CVE-2026-15539
A security vulnerability has been detected in SourceCodester Online Book Store System 1.0. Impacted is an unknown function of the file /admin/index.php?page=books of the component Book Image Upload Feature. Such manipulation leads to unrestricted upload. The attack may be performed from remote. T...
CVE-2026-15540 SourceCodester Online Book Store System Administrative index.php php file inclusion
A vulnerability was detected in SourceCodester Online Book Store System 1.0. The affected element is an unknown function of the file /admin/index.php of the component Administrative Interface. Performing a manipulation of the argument page results in improper control of filename for include/requi...
CVE-2026-15539 SourceCodester Online Book Store System Book Image Upload Feature index.php books unrestricted upload
A security vulnerability has been detected in SourceCodester Online Book Store System 1.0. Impacted is an unknown function of the file /admin/index.php?page=books of the component Book Image Upload Feature. Such manipulation leads to unrestricted upload. The attack may be performed from remote. T...
EUVD-2025-197645
Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...
CVE-2025-63891
Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...
EUVD-2022-42826
Malicious code in bioql PyPI...
EUVD-2022-51587
Malicious code in bioql PyPI...
EUVD-2022-42827
Malicious code in bioql PyPI...
CVE-2025-9700
The CVE-2025-9700 entry concerns SourceCodester Online Book Store 1.0 where the /publisher_list.php endpoint processes the pubid parameter unsafely, enabling SQL injection. Several trusted sources corroborate a remote-executable SQL injection vulnerability stemming from incorrect handling of pubi...
CVE-2022-3452
A vulnerability was found in SourceCodester Book Store Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /category.php. The manipulation of the argument categoryname leads to cross site scripting. The attack can be initiated remotely...
CVE-2022-4228
A vulnerability classified as problematic has been found in SourceCodester Book Store Management System 1.0. This affects an unknown part of the file /bsmsci/index.php/user/edituser/. The manipulation of the argument password leads to information disclosure. It is possible to initiate the attack...
CVE-2022-4228
A vulnerability classified as problematic has been found in SourceCodester Book Store Management System 1.0. This affects an unknown part of the file /bsmsci/index.php/user/edituser/. The manipulation of the argument password leads to information disclosure. It is possible to initiate the attack...
CVE-2022-4229
A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0. This vulnerability affects unknown code of the file /bsmsci/index.php. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to t...
Improper access control
A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0. This vulnerability affects unknown code of the file /bsmsci/index.php. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to t...
CVE-2022-4228 SourceCodester Book Store Management System information disclosure
A vulnerability classified as problematic has been found in SourceCodester Book Store Management System 1.0. This affects an unknown part of the file /bsmsci/index.php/user/edituser/. The manipulation of the argument password leads to information disclosure. It is possible to initiate the attack...
CVE-2022-4229
The CVE-2022-4229 entry concerns SourceCodester Book Store Management System 1.0. A vulnerability exists in the unknown code path of /bsms_ci/index.php that leads to improper access controls. It is described as remotely initiatable with public disclosure of the exploit, and is rated high/critical...
PT-2022-26353 · Unknown · Sourcecodester Book Store Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Book Store Management System version 1.0 Description: A critical vulnerability was found in the SourceCodester Book Store Management System, affecting unknown code of the file /bsms ci/index.php. This issue leads to improper...
CVE-2022-4229 SourceCodester Book Store Management System index.php access control
A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0. This vulnerability affects unknown code of the file /bsmsci/index.php. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to t...
PT-2022-26352 · Unknown · Sourcecodester Book Store Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Book Store Management System version 1.0 Description: A problematic vulnerability has been found in the SourceCodester Book Store Management System. This issue affects an unknown part of the file /bsms ci/index.php/user/edit...