EUVD-2023-59246

Malicious code in bioql PyPI...

CVE-2025-7174 code-projects Library System teacher-issue-book.php sql injection

A vulnerability was found in code-projects Library System 1.0 and classified as critical. This issue affects some unknown processing of the file /teacher-issue-book.php. The manipulation of the argument idn leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...

CVE-2025-6900

The CVE-2025-6900 entry affects code-projects Library System 1.0, with the flaw located in /add-book.php where the image parameter allows unrestricted file uploads. This remote, publicly disclosed vulnerability could enable attackers to upload arbitrary files. Several sources (NVD, Red Hat, CNNVD...

CVE-2025-6900 code-projects Library System add-book.php unrestricted upload

A vulnerability has been found in code-projects Library System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-book.php. The manipulation of the argument image leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6900 code-projects Library System add-book.php unrestricted upload

A vulnerability has been found in code-projects Library System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-book.php. The manipulation of the argument image leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6835 code-projects Library System student-issue-book.php sql injection

A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student-issue-book.php. The manipulation of the argument reg leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-5984

A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file book.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2024-5984

A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file book.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2024-5984

CVE-2024-5984 affects itsourcecode Online Bookstore 1.0, with the vulnerable component being book.php where the bookisbn parameter enables SQL injection. The vulnerability can be exploited remotely, and public disclosures exist (VDB-268460). Multiple connected sources corroborate the issue, inclu...

CVE-2024-5984 itsourcecode Online Bookstore book.php sql injection

A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file book.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be launched remotely. The exploit has been...

PT-2024-37293 · Unknown · Itsourcecode Online Bookstore

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Bookstore version 1.0 Description: A critical issue affects some unknown functionality of the file book.php. The manipulation of the bookisbn argument leads to SQL injection. The attack can be launched remotely. There is n...

CVE-2024-28279

CVE-2024-28279 affects Code-projects Computer Book Store 1.0. The vulnerability is an SQL Injection exploitable via the endpoint book.php?bookisbn=, enabling remote manipulation. Several connected sources confirm the issue and indicate high risk (CVSS v3.1: 7.3, HIGH). Remediation/immediate actio...

Cross site scripting

A vulnerability was found in SourceCodester School Visitor Log e-Book 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file log-book.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched remotely...

CVE-2023-7059 SourceCodester School Visitor Log e-Book log-book.php cross site scripting

A vulnerability was found in SourceCodester School Visitor Log e-Book 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file log-book.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched remotely...

CVE-2023-7059

The CVE-2023-7059 entry concerns SourceCodester School Visitor Log e-Book 1.0. The vulnerability is a cross-site scripting flaw in the log-book.php file triggered by manipulating the Full Name parameter. The issue is exploitable remotely, with public disclosure reported. Connected documents confi...

Cross site scripting

A vulnerability was found in SourceCodester Book Borrower System 1.0 and classified as problematic. This issue affects some unknown processing of the file endpoint/add-book.php. The manipulation of the argument Book Title/Book Author leads to cross site scripting. The attack may be initiated...

CVE-2023-6440 SourceCodester Book Borrower System add-book.php cross site scripting

A vulnerability was found in SourceCodester Book Borrower System 1.0 and classified as problematic. This issue affects some unknown processing of the file endpoint/add-book.php. The manipulation of the argument Book Title/Book Author leads to cross site scripting. The attack may be initiated...

CVE-2022-2770 SourceCodester Simple Online Book Store System book.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Book Store System. Affected is an unknown function of the file /obs/book.php. The manipulation of the argument bookisbn leads to sql injection. It is possible to launch the attack remotely. VDB-206166 is...

CVE-2022-2747

A vulnerability was found in SourceCodester Simple Online Book Store and classified as critical. This issue affects some unknown processing of the file book.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be initiated remotely. The associated identifier of th...

Simple Online Book Store System SQL注入漏洞

Simple Online Book Store System is a simple online bookstore system by Carlo Montero Personal Developer. A security vulnerability exists in Simple Online Book Store System, which originates from an unknown function in the file /obs/book.php, where manipulation of the parameter bookisbn can lead t...