61 matches found
CVE-2023-5580
The CVE-2023-5580 entry corresponds to a SQL injection vulnerability in SourceCodester Library System 1.0, specifically affecting the index.php file via manipulating the category argument. The root cause is improper input handling leading to SQL injection that can be triggered remotely. Documente...
PT-2023-32192 · Unknown · Sourcecodester Library System
Name of the Vulnerable Software and Affected Versions: SourceCodester Library System version 1.0 Description: A critical issue has been discovered, affecting the file index.php. The manipulation of the category argument leads to SQL injection. This issue can be exploited remotely. Recommendations...
PT-2022-18566 · Unknown · Sourcecodester Library Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Library Management System affected versions not specified Description: A vulnerability was found in the SourceCodester Library Management System, affecting unknown code of the file /qr/I/. The manipulation of the error argument...
CVE-2022-2492
A vulnerability was found in SourceCodester Library Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php. The manipulation of the argument RollNo with the input admin' AND SELECT 2625 FROM SELECTSLEEP5MdIL AND...
CVE-2022-2491
A vulnerability has been found in SourceCodester Library Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file lab.php. The manipulation of the argument Section with the input 1' UNION ALL SELECT...
Sql injection
A vulnerability has been found in SourceCodester Library Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file lab.php. The manipulation of the argument Section with the input 1' UNION ALL SELECT...
CVE-2022-2492 SourceCodester Library Management System index.php sql injection
A vulnerability was found in SourceCodester Library Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php. The manipulation of the argument RollNo with the input admin' AND SELECT 2625 FROM SELECTSLEEP5MdIL AND...
CVE-2022-2491 SourceCodester Library Management System lab.php sql injection
A vulnerability has been found in SourceCodester Library Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file lab.php. The manipulation of the argument Section with the input 1' UNION ALL SELECT...
CVE-2022-2491
CVE-2022-2491 affects SourceCodester Library Management System 1.0 (lab.php). A SQL injection is triggered by manipulating the Section argument with the input 1' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,CONCAT(0x71716b7171,0x546e4444736b7743575a666d4873746a6450616261527a6762794442694650724566414...
CVE-2022-2212
A vulnerability was found in SourceCodester Library Management System 1.0. It has been classified as critical. Affected is an unknown function of the component /card/index.php. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. The...
CVE-2022-2213
A vulnerability was found in SourceCodester Library Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/editadmindetails.php?id=admin. The manipulation of the argument Name leads to cross site scripting. The...
Sql injection
A vulnerability was found in SourceCodester Library Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /librarian/bookdetails.php. The manipulation of the argument id with the input ' AND SELECT 9198 FROM SELECTSLEEP5iqZA-- PbtB...
CVE-2022-2214 SourceCodester Library Management System bookdetails.php sql injection
A vulnerability was found in SourceCodester Library Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /librarian/bookdetails.php. The manipulation of the argument id with the input ' AND SELECT 9198 FROM SELECTSLEEP5iqZA-- PbtB...
CVE-2022-2214 SourceCodester Library Management System bookdetails.php sql injection
A vulnerability was found in SourceCodester Library Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /librarian/bookdetails.php. The manipulation of the argument id with the input ' AND SELECT 9198 FROM SELECTSLEEP5iqZA-- PbtB...
CVE-2022-2212 SourceCodester Library Management System /card/index.php unrestricted upload
A vulnerability was found in SourceCodester Library Management System 1.0. It has been classified as critical. Affected is an unknown function of the component /card/index.php. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. The...
SourceCodester Online Library Management System Code Issue Vulnerability
SourceCodester Online Library Management System is an online library management system from SourceCodester, Inc. in the United States. A security vulnerability exists in version 1.0 of the SourceCodester Online Library Management System, which originates from an arbitrary file upload in the uploa...
Design/Logic Flaw
An Arbitrary File Upload in the Upload Image component in SourceCodester Online Library Management System 1.0 allows the user to conduct remote code execution via admin/borrower/index.php?view=add because .php files can be uploaded to admin/borrower/photos under the web root...
CVE-2020-25514
Sourcecodester Simple Library Management System 1.0 is affected by Incorrect Access Control via the Login Panel, http:///lms/admin.php...
CVE-2020-25514
Sourcecodester Simple Library Management System 1.0 is affected by Incorrect Access Control via the Login Panel, http:///lms/admin.php...
Design/Logic Flaw
Sourcecodester Simple Library Management System 1.0 is affected by Incorrect Access Control via the Login Panel, http:///lms/admin.php...