Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNVD
CNVDadded 2025/07/21 12:0 a.m.1 views

Library System books.php File SQL Injection Vulnerability

Library System is a library system. The Library System suffers from an SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter Search in the file /user/teacher/books.php. An attacker can exploit this vulnerability to execute...

9.8CVSS8.3AI score0.00277EPSS
Exploits1References1
CVE
CVEadded 2025/07/08 3:32 p.m.17 views

CVE-2025-7184

CVE-2025-7184 affects code-projects Library System 1.0, specifically the file path /user/teacher/books.php. The vulnerability is a SQL injection triggered by manipulating the argument named Search ; exploitation is possible remotely and has been disclosed publicly. Multiple sources describe the r...

9.8CVSS7.5AI score0.00277EPSS
Exploits1References5Affected Software1
CNVD
CNVDadded 2022/03/29 12:0 a.m.129 views

xiaohuanxiong SQL injection vulnerability

xiaohuanxiong is an open source comic CMS by guoguo individual developers. xiaohuanxiong version 1.0 is vulnerable to SQL injection, which originates from the id parameter in /app/controller/Books.php. No detailed vulnerability details are available...

9.8CVSS3.8AI score0.00245EPSS
Exploits1References1
NVD
NVDadded 2022/03/28 1:15 a.m.7 views

CVE-2022-26268

Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php...

9.8CVSS0.00245EPSS
Exploits1References1
Prion
Prionadded 2022/03/28 1:15 a.m.8 views

Sql injection

Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php...

7.5CVSS9.7AI score0.00245EPSS
Exploits1References1Affected Software1
Openbugbounty
Openbugbountyadded 2018/02/12 8:58 p.m.11 views

origami.at XSS vulnerability

Open Bug Bounty ID: OBB-558219 Description| Value ---|--- Affected Website:| origami.at Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
NVD
NVDadded 2010/06/11 2:30 p.m.13 views

CVE-2009-4889

SQL injection vulnerability in books.php in the Book Panel bookpanel module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the bookid parameter...

7.5CVSS8.4AI score0.00691EPSS
Exploits1References3
CVE
CVEadded 2010/06/11 2:0 p.m.44 views

CVE-2009-4889

CVE-2009-4889 affects the PHP-Fusion delivery of the Book Panel module, specifically the books.php file used to manage books. The vulnerability arises from insufficient input sanitization in the bookid parameter, leading to an SQL injection vulnerability. This enables remote attackers to craft in...

7.5CVSS8.7AI score0.00691EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder