9 matches found
CVE-2025-0296
A vulnerability was found in code-projects Online Book Shop 1.0. It has been classified as critical. This affects an unknown part of the file /booklist.php. The manipulation of the argument subcatid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-0296 code-projects Online Book Shop booklist.php sql injection
A vulnerability was found in code-projects Online Book Shop 1.0. It has been classified as critical. This affects an unknown part of the file /booklist.php. The manipulation of the argument subcatid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-0296 code-projects Online Book Shop booklist.php sql injection
A vulnerability was found in code-projects Online Book Shop 1.0. It has been classified as critical. This affects an unknown part of the file /booklist.php. The manipulation of the argument subcatid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-0296
CVE-2025-0296 affects code-projects Online Book Shop 1.0. Multiple sources confirm a SQL injection in the /booklist.php page via the subcatid parameter. The vulnerability is exploitable remotely and is described as critical/high impact by several vendors (e.g., Red Hat, CVE databases). The root c...
CVE-2025-0295 code-projects Online Book Shop booklist.php cross site scripting
A vulnerability was found in code-projects Online Book Shop 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /booklist.php?subcatid=1. The manipulation of the argument subcatnm leads to cross site scripting. The attack may be launched remotely. T...
CVE-2025-0295
CVE-2025-0295 concerns code-projects Online Book Shop 1.0. The issue is a cross-site scripting vulnerability in the /booklist.php endpoint, triggered by manipulating the subcatnm parameter (with subcatid=1). Affected functionality is unspecified beyond this endpoint; the attack can be launched re...
CVE-2025-0295 code-projects Online Book Shop booklist.php cross site scripting
A vulnerability was found in code-projects Online Book Shop 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /booklist.php?subcatid=1. The manipulation of the argument subcatnm leads to cross site scripting. The attack may be launched remotely. T...
Code-Projects Online Book Shop 代码注入漏洞
Code-Projects Online Book Shop is a Code-Projects open source online bookstore. A code injection vulnerability exists in Code-Projects Online Book Shop version 1.0, which originates from a cross-site scripting vulnerability in the subcatnm parameter of the /booklist.php page...
PT-2025-3815 · Unknown · Code-Projects Online Book Shop
Name of the Vulnerable Software and Affected Versions: code-projects Online Book Shop version 1.0 Description: A problem was found in the file /booklist.php?subcatid=1, where the manipulation of the subcatnm argument leads to cross site scripting. The attack may be launched remotely...