Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:33 p.m.5 views

CVE-2020-36112

CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based SQL injection in pubid parameter in bookPerPub.php and in cart.php. A successful exploitation of this vulnerability will lead to an attacker dumping the entire database on which the web application...

9.8CVSS7.7AI score0.17166EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2021/02/16 12:0 a.m.11 views

CSE Bookstore SQL Injection (CVE-2020-36112)

An SQL injection vulnerability exists in CSE Bookstore. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS5.4AI score0.17166EPSS
Exploits1
NVD
NVD
added 2021/01/04 3:15 p.m.25 views

CVE-2020-36112

CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based SQL injection in pubid parameter in bookPerPub.php and in cart.php. A successful exploitation of this vulnerability will lead to an attacker dumping the entire database on which the web application...

9.8CVSS9.8AI score0.17166EPSS
Exploits1References1
Prion
Prion
added 2021/01/04 3:15 p.m.16 views

Sql injection

CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based SQL injection in pubid parameter in bookPerPub.php and in cart.php. A successful exploitation of this vulnerability will lead to an attacker dumping the entire database on which the web application...

7.5CVSS9.7AI score0.17166EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/04 2:46 p.m.23 views

CVE-2020-36112

CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based SQL injection in pubid parameter in bookPerPub.php and in cart.php. A successful exploitation of this vulnerability will lead to an attacker dumping the entire database on which the web application...

9.9AI score0.17166EPSS
Exploits1References1
CVE
CVE
added 2021/01/04 2:46 p.m.75 views

CVE-2020-36112

CVE-2020-36112 affects CSE Bookstore 1.0. The vulnerability is an SQL injection (time-based blind, boolean-based blind, and OR-based) in the pubid parameter of bookPerPub.php and cart.php, allowing an attacker to dump the entire database. Affected software: CSE Bookstore 1.0. Root cause: improper...

9.8CVSS9.7AI score0.17166EPSS
In wildExploits1References1Affected Software1
Packet Storm
Packet Storm
added 2020/12/22 12:0 a.m.272 views

CSE Bookstore 1.0 SQL Injection

Exploit Title : CSE Bookstore 1.0 - Multiple SQL Injection Date : 2020-12-21 Author : Musyoka Ian Version : CSE Bookstore 1.0 Vendor Homepage: https://projectworlds.in/ Platform : PHP Tested on : Debian CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR...

Exploits0
Exploit DB
Exploit DB
added 2020/12/22 12:0 a.m.756 views

CSE Bookstore 1.0 - Multiple SQL Injection

Exploit Title : CSE Bookstore 1.0 - Multiple SQL Injection Date : 2020-12-21 Author : Musyoka Ian Version : CSE Bookstore 1.0 Vendor Homepage: https://projectworlds.in/ Platform : PHP Tested on : Debian CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/10/30 12:0 a.m.891 views

CSE Bookstore 1.0 Cross Site Scripting

Exploit Title: CSE Bookstore 1.0 - 'quantity' Persistent Cross-site Scripting Date: 30/10/2020 Exploit Author: Vyshnav NK Vendor Homepage: https://projectworlds.in/ Software Link: https://github.com/projectworlds32/online-book-store-project-in-php/archive/master.zip Version: 1.0 Tested on: Window...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/10/30 12:0 a.m.661 views

CSE Bookstore 1.0 - 'quantity' Persistent Cross-site Scripting

Exploit Title: CSE Bookstore 1.0 - 'quantity' Persistent Cross-site Scripting Date: 30/10/2020 Exploit Author: Vyshnav NK Vendor Homepage: https://projectworlds.in/ Software Link: https://github.com/projectworlds32/online-book-store-project-in-php/archive/master.zip Version: 1.0 Tested on: Window...

7.4AI score
Exploits0
Rows per page
Query Builder