8 matches found
EUVD-2026-4654
A vulnerability was found in iJason-Liu BooksManager up to 298ba736387ca37810466349af13a0fdf828e99c. This vulnerability affects unknown code of the file controllers/bookscenter/uploadbookCover.php. Performing a manipulation of the argument bookcover results in unrestricted upload. The attack may ...
CVE-2026-1445 iJason-Liu Books_Manager upload_bookCover.php unrestricted upload
A vulnerability was found in iJason-Liu BooksManager up to 298ba736387ca37810466349af13a0fdf828e99c. This vulnerability affects unknown code of the file controllers/bookscenter/uploadbookCover.php. Performing a manipulation of the argument bookcover results in unrestricted upload. The attack may ...
CVE-2026-1445
A vulnerability was found in iJason-Liu BooksManager up to 298ba736387ca37810466349af13a0fdf828e99c. This vulnerability affects unknown code of the file controllers/bookscenter/uploadbookCover.php. Performing a manipulation of the argument bookcover results in unrestricted upload. The attack may ...
CVE-2026-1445
CVE-2026-1445 affects iJason-Liu Books_Manager, with the vulnerability impacting the file controllers/books_center/upload_bookCover.php. The issue arises from manipulating the argument book_cover, which results in unrestricted (unvalidated) file upload. The description indicates the attack can be...
Books_Manager code issue vulnerabilities
BooksManager is a book management system developed by iJason-Liu. There are code issues and vulnerabilities in BooksManager, which stem from incorrect handling of the parameter “bookcover” in the file controllers/bookscenter/uploadbookCover.php. This could lead to arbitrary file uploads...
PT-2026-4823
A vulnerability was found in iJason-Liu Books Manager up to 298ba736387ca37810466349af13a0fdf828e99c. This vulnerability affects unknown code of the file controllers/books center/upload bookCover.php. Performing a manipulation of the argument book cover results in unrestricted upload. The attack...
Zentao Demo15 路径遍历漏洞
Zentao Demo15 is a book cover template system for eBooks and popular print book sizes by the individual developers of Zentao. A security vulnerability exists in Zentao Demo15 that stems from susceptibility to directory traversal...
Server-Side Request Forgery (SSRF)
calibreweb is vulnerable to server-side request forgery. The vulnerability exists in deleteuser function of admin.py due to lack of validation which allows an attacker to fetch localhost URL and upload a book cover...