30 matches found
CVE-2023-4847
A vulnerability classified as problematic has been found in SourceCodester Simple Book Catalog App 1.0. Affected is an unknown function of the component Update Book Form. The manipulation of the argument booktitle/bookauthor leads to cross site scripting. It is possible to launch the attack...
EUVD-2008-3499
Malware in sbrugna...
EUVD-2023-54688
Malicious code in bioql PyPI...
CVE-2023-4848
A vulnerability classified as critical was found in SourceCodester Simple Book Catalog App 1.0. Affected by this vulnerability is an unknown functionality of the file deletebook.php. The manipulation of the argument delete leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2023-4848
A vulnerability classified as critical was found in SourceCodester Simple Book Catalog App 1.0. Affected by this vulnerability is an unknown functionality of the file deletebook.php. The manipulation of the argument delete leads to sql injection. The attack can be launched remotely. The exploit h...
Sql injection
A vulnerability classified as critical was found in SourceCodester Simple Book Catalog App 1.0. Affected by this vulnerability is an unknown functionality of the file deletebook.php. The manipulation of the argument delete leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2023-4848 SourceCodester Simple Book Catalog App delete_book.php sql injection
A vulnerability classified as critical was found in SourceCodester Simple Book Catalog App 1.0. Affected by this vulnerability is an unknown functionality of the file deletebook.php. The manipulation of the argument delete leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2023-4848
The CVE-2023-4848 entry concerns SourceCodester Simple Book Catalog App 1.0. Affected component: delete_book.php where manipulating the delete parameter triggers an SQL injection. Root cause is insecure handling of user-supplied input in the delete functionality, enabling remote exploitation. Pub...
CVE-2023-4848 SourceCodester Simple Book Catalog App delete_book.php sql injection
A vulnerability classified as critical was found in SourceCodester Simple Book Catalog App 1.0. Affected by this vulnerability is an unknown functionality of the file deletebook.php. The manipulation of the argument delete leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2023-4847
A vulnerability classified as problematic has been found in SourceCodester Simple Book Catalog App 1.0. Affected is an unknown function of the component Update Book Form. The manipulation of the argument booktitle/bookauthor leads to cross site scripting. It is possible to launch the attack...
CVE-2023-4847
A vulnerability classified as problematic has been found in SourceCodester Simple Book Catalog App 1.0. Affected is an unknown function of the component Update Book Form. The manipulation of the argument booktitle/bookauthor leads to cross site scripting. It is possible to launch the attack...
Cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Simple Book Catalog App 1.0. Affected is an unknown function of the component Update Book Form. The manipulation of the argument booktitle/bookauthor leads to cross site scripting. It is possible to launch the attack...
CVE-2023-4847 SourceCodester Simple Book Catalog App Update Book Form cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Simple Book Catalog App 1.0. Affected is an unknown function of the component Update Book Form. The manipulation of the argument booktitle/bookauthor leads to cross site scripting. It is possible to launch the attack...
CVE-2023-4847 SourceCodester Simple Book Catalog App Update Book Form cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Simple Book Catalog App 1.0. Affected is an unknown function of the component Update Book Form. The manipulation of the argument booktitle/bookauthor leads to cross site scripting. It is possible to launch the attack...
CVE-2023-4847
CVE-2023-4847 affects SourceCodester Simple Book Catalog App v1.0, specifically the Update Book Form. An unknown function within this form lets an attacker manipulate the book_title or book_author parameters, causing cross-site scripting. The vulnerability is remote-exploitable and has public exp...
SourceCodester Simple Book Catalog App Cross-Site Scripting Vulnerability
Simple Book Catalog App is a simple book catalog application by the individual developer Remy Andrade. A cross-site scripting vulnerability exists in SourceCodester Simple Book Catalog App version 1.0, which stems from the presence of an unknown function in the component Update Book Form, leading...
SourceCodester Simple Book Catalog App SQL Injection Vulnerability
Simple Book Catalog App is a simple book catalog application by the individual developer Remy Andrade. A SQL injection vulnerability exists in SourceCodester Simple Book Catalog App version 1.0, which stems from an unknown function in the file deletebook.php that causes a sql injection via the...
PHP-Nuke Book Catalog Module 1.0 'upload.php' Arbitrary File Upload Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19890/info The Book Catalog module for PHP-Nuke is prone to a vulnerability that lets attackers upload arbitrary files. Exploiting this issue may allow an attacker to compromise the application and the underlying system;...
PHP-Nuke Book Catalog Module 1.0 'catid' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30511/info The Book Catalog module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
Sql injection
SQL injection vulnerability in the Book Catalog module 1.0 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the catid parameter in a category action to modules.php...