Simple Online Book Store System SQL注入漏洞

Simple Online Book Store System is a simple online bookstore system by Carlo Montero, an individual developer. Simple Online Book Store System suffers from a SQL injection vulnerability that arises from an unknown function in its book.php component that improperly handles the parameter bookisbn,...

PT-2022-18439 · Sourcecodester · Sourcecodester Simple Online Book Store System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Online Book Store affected versions not specified Description: A critical issue was found in the processing of the file book.php, where the manipulation of the book isbn argument leads to SQL injection. The attack can be...

CVE-2020-19110

SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to book.php parameter, which could let a remote malicious user execute arbitrary code...

CSE Bookstore 1.0 - Multiple SQL Injection

Exploit Title : CSE Bookstore 1.0 - Multiple SQL Injection Date : 2020-12-21 Author : Musyoka Ian Version : CSE Bookstore 1.0 Vendor Homepage: https://projectworlds.in/ Platform : PHP Tested on : Debian CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR...

XSS Vulnerability in Hot Drama CMS v2.1

Hot Drama CMS is a movie and TV station building system developed by PHP+MySQL. A stored xss injection vulnerability exists in /wap/book.php in Hot Drama CMS v2.1, which can be exploited by attackers to obtain an administrator cookie...

CVE-2018-14838

rejucms 2.1 has stored XSS via the admin/book.php content parameter...

Cross site scripting

rejucms 2.1 has stored XSS via the admin/book.php content parameter...

CVE-2018-14838

rejucms 2.1 has stored XSS via the admin/book.php content parameter...

CVE-2018-14838

CVE-2018-14838 affects rejucms 2.1 and is a stored XSS vulnerability in the admin/book.php content parameter. The issue allows injection of script/HTML through that parameter, leading to potential script execution in the context of the affected CMS. No explicit mitigation or patch details are pro...

tabakshistorie.nl XSS vulnerability

Open Bug Bounty ID: OBB-610111 Description| Value ---|--- Affected Website:| tabakshistorie.nl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

readinga-z.com XSS vulnerability

Open Bug Bounty ID: OBB-568688 Description| Value ---|--- Affected Website:| readinga-z.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

forlagetunivers.dk XSS vulnerability

Vulnerable URL: http://www.forlagetunivers.dk/book.php?id=41〈=da"';-- Details: Description| Value ---|--- Patched:| No Latest check for patch:| 07.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 11904013 VIP website status:| No Coordinated Disclosure Timelin...

zaalbooks.nl XSS vulnerability

Vulnerable URL: http://www.zaalbooks.nl/books/book.php?full='"--!confirmOPENBUGBOUNTY...

CVE-2011-5200

Multiple SQL injection vulnerabilities in DeDeCMS, possibly 5.6, allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 list.php, 2 members.php, or 3 book.php...

Sql injection

Multiple SQL injection vulnerabilities in Tourism Script Accommodation Hotel Booking Portal Script allow remote attackers to execute arbitrary SQL commands via the hotelid parameter to 1 hotel.php, 2 details.php, 3 roomtypes.php, 4 photos.php, 5 map.php, 6 weather.php, 7 reviews.php, and 8 book.p...