Lucene search
K

22 matches found

EUVD
EUVD
added 2 days ago6 views

EUVD-2026-43295

A security vulnerability has been detected in SourceCodester Online Book Store System 1.0. Impacted is an unknown function of the file /admin/index.php?page=books of the component Book Image Upload Feature. Such manipulation leads to unrestricted upload. The attack may be performed from remote. T...

5.8CVSS5.7AI score0.00227EPSS
Exploits0References7
NVD
NVD
added 2 days ago6 views

CVE-2026-15539

A security vulnerability has been detected in SourceCodester Online Book Store System 1.0. Impacted is an unknown function of the file /admin/index.php?page=books of the component Book Image Upload Feature. Such manipulation leads to unrestricted upload. The attack may be performed from remote. T...

5.8CVSS0.00227EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago30 views

CVE-2026-15540 SourceCodester Online Book Store System Administrative index.php php file inclusion

A vulnerability was detected in SourceCodester Online Book Store System 1.0. The affected element is an unknown function of the file /admin/index.php of the component Administrative Interface. Performing a manipulation of the argument page results in improper control of filename for include/requi...

5.3CVSS0.00242EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago31 views

CVE-2026-15539 SourceCodester Online Book Store System Book Image Upload Feature index.php books unrestricted upload

A security vulnerability has been detected in SourceCodester Online Book Store System 1.0. Impacted is an unknown function of the file /admin/index.php?page=books of the component Book Image Upload Feature. Such manipulation leads to unrestricted upload. The attack may be performed from remote. T...

5.8CVSS0.00227EPSS
Exploits0References6
EUVD
EUVD
added 2025/11/14 9:30 p.m.4 views

EUVD-2025-197645

Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...

7.5CVSS6.1AI score0.00438EPSS
Exploits1References4
NVD
NVD
added 2025/11/14 9:15 p.m.7 views

CVE-2025-63891

Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...

7.5CVSS0.00438EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-42826

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00389EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-51587

Malicious code in bioql PyPI...

7.5CVSS5.7AI score0.01211EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-42827

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00348EPSS
Exploits0References1
CVE
CVE
added 2025/08/30 5:32 p.m.22 views

CVE-2025-9700

The CVE-2025-9700 entry concerns SourceCodester Online Book Store 1.0 where the /publisher_list.php endpoint processes the pubid parameter unsafely, enabling SQL injection. Several trusted sources corroborate a remote-executable SQL injection vulnerability stemming from incorrect handling of pubi...

9.8CVSS7.2AI score0.00383EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 1:19 a.m.9 views

CVE-2022-3452

A vulnerability was found in SourceCodester Book Store Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /category.php. The manipulation of the argument categoryname leads to cross site scripting. The attack can be initiated remotely...

5.4CVSS6.4AI score0.00389EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/11/30 12:15 p.m.4 views

CVE-2022-4228

A vulnerability classified as problematic has been found in SourceCodester Book Store Management System 1.0. This affects an unknown part of the file /bsmsci/index.php/user/edituser/. The manipulation of the argument password leads to information disclosure. It is possible to initiate the attack...

7.5CVSS4.7AI score0.01211EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/11/30 12:15 p.m.3 views

CVE-2022-4228

A vulnerability classified as problematic has been found in SourceCodester Book Store Management System 1.0. This affects an unknown part of the file /bsmsci/index.php/user/edituser/. The manipulation of the argument password leads to information disclosure. It is possible to initiate the attack...

7.5CVSS5AI score0.01211EPSS
Exploits1References3
OSV
OSV
added 2022/11/30 12:15 p.m.2 views

CVE-2022-4229

A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0. This vulnerability affects unknown code of the file /bsmsci/index.php. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to t...

9.8CVSS5.3AI score0.00897EPSS
Exploits1References3
Prion
Prion
added 2022/11/30 12:15 p.m.20 views

Improper access control

A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0. This vulnerability affects unknown code of the file /bsmsci/index.php. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to t...

7.5CVSS9.5AI score0.00897EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/30 12:0 a.m.10 views

CVE-2022-4228 SourceCodester Book Store Management System information disclosure

A vulnerability classified as problematic has been found in SourceCodester Book Store Management System 1.0. This affects an unknown part of the file /bsmsci/index.php/user/edituser/. The manipulation of the argument password leads to information disclosure. It is possible to initiate the attack...

5.3CVSS6.6AI score0.01211EPSS
Exploits1References3
CVE
CVE
added 2022/11/30 12:0 a.m.71 views

CVE-2022-4229

The CVE-2022-4229 entry concerns SourceCodester Book Store Management System 1.0. A vulnerability exists in the unknown code path of /bsms_ci/index.php that leads to improper access controls. It is described as remotely initiatable with public disclosure of the exploit, and is rated high/critical...

9.8CVSS8.8AI score0.00897EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/11/30 12:0 a.m.10 views

PT-2022-26353 · Unknown · Sourcecodester Book Store Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Book Store Management System version 1.0 Description: A critical vulnerability was found in the SourceCodester Book Store Management System, affecting unknown code of the file /bsms ci/index.php. This issue leads to improper...

9.8CVSS8AI score0.00897EPSS
Exploits1References7
Cvelist
Cvelist
added 2022/11/30 12:0 a.m.35 views

CVE-2022-4229 SourceCodester Book Store Management System index.php access control

A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0. This vulnerability affects unknown code of the file /bsmsci/index.php. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to t...

7.3CVSS9.8AI score0.00897EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/11/30 12:0 a.m.4 views

PT-2022-26352 · Unknown · Sourcecodester Book Store Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Book Store Management System version 1.0 Description: A problematic vulnerability has been found in the SourceCodester Book Store Management System. This issue affects an unknown part of the file /bsms ci/index.php/user/edit...

7.5CVSS5.4AI score0.01211EPSS
Exploits1References7
Rows per page
Query Builder