Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 8:14 a.m.2 views

CVE-2024-9036

A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been rated as critical. This issue affects some unknown processing of the file adminadd.php. The manipulation of the argument image leads to unrestricted upload. The attack may be initiated remotely. The exploit has been...

6.5CVSS6.9AI score0.00129EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 3:33 p.m.3 views

CVE-2020-36112

CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based SQL injection in pubid parameter in bookPerPub.php and in cart.php. A successful exploitation of this vulnerability will lead to an attacker dumping the entire database on which the web application...

9.8CVSS7.7AI score0.89494EPSS
Exploits1
CNNVD
CNNVDadded 2025/01/09 12:0 a.m.0 views

bookstore 代码注入漏洞

bookstore is an e-commerce bookstore system by donglight individual developer. A code injection vulnerability exists in bookstore version 1.0.0, which originates from the updateUser function in the file src/main/Java/org/zdd/bookstore/web/controller/admin/AdminUserControlle.java, which can lead t...

5.4CVSS4.7AI score0.00162EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/01/08 12:0 a.m.3 views

PT-2025-2053 · Unknown · Donglight Bookstore

Name of the Vulnerable Software and Affected Versions: donglight bookstore versions 1.0.0 Description: A critical issue affects the getHtml function of the file src/main/java/org/zdd/bookstore/rawl/HttpUtil.java. The manipulation of the url argument leads to server-side request forgery, allowing...

9.8CVSS6.7AI score0.00102EPSS
Exploits1References11
Positive Technologies
Positive Technologiesadded 2024/06/14 12:0 a.m.3 views

PT-2024-37292 · Unknown · Itsourcecode Online Bookstore

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Bookstore version 1.0 Description: A critical issue has been found in the itsourcecode Online Bookstore, affecting an unknown functionality of the file bookPerPub.php. The manipulation of the pubid argument leads to SQL...

9.8CVSS8.1AI score0.00187EPSS
Exploits1References9
CNNVD
CNNVDadded 2024/06/14 12:0 a.m.0 views

Online Bookstore SQL Injection Vulnerability

Online Book Store is an online bookstore by Arvin Arandilla, a personal developer. A SQL injection vulnerability exists in Online Bookstore version 1.0, which is caused by book.php containing an unknown function that causes SQL injection via the parameter bookisbn...

9.8CVSS8AI score0.001EPSS
Exploits1References5
VulnCheck KEV
VulnCheck KEVadded 2023/12/21 12:0 a.m.0 views

VulnCheck KEV: CVE-2020-36112

CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based SQL injection in pubid parameter in bookPerPub.php and in cart.php. A successful exploitation of this vulnerability will lead to an attacker dumping the entire database on which the web application...

9.8CVSS7.4AI score0.89494EPSS
Exploits1References1
Rows per page
Query Builder