Lucene search
K
OrdasoftCom Booklibrary

4 matches found

CVE
CVE
added 2010/07/01 6:0 p.m.54 views

CVE-2010-1522

The CVE-2010-1522 issue affects BookLibrary Basic (com_booklibrary) for Joomla! 1.5.3, where multiple SQL injections are possible via user-supplied parameters in index.php. The root cause is improper sanitization of inputs in five vectors: bid[] in lend_request/save_lend_request, id in mdownload/...

7.5CVSS8.8AI score0.0133EPSS
CVE
CVE
added 2009/10/28 10:0 a.m.50 views

CVE-2009-3817

CVE-2009-3817 is a PHP remote file inclusion vulnerability in the BookLibrary (com_booklibrary) Joomla! component. Affected entry: version 1.0 for BookLibrary allows an attacker to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter (remote inclusion). This vector is dis...

7.5CVSS7.3AI score0.02279EPSS
Web
CVE
CVE
added 2010/07/23 8:0 p.m.43 views

CVE-2010-2851

The CVE-2010-2851 entry refers to an SQL injection in the Joomla! BookLibrary From Same Author (com_booklibrary) module (version 1.5 and possibly earlier). The vulnerability is triggered via the id parameter in a view action to index.php, allowing remote attackers to execute arbitrary SQL command...

7.5CVSS8.8AI score0.01299EPSS
CVE
CVE
added 2009/07/28 7:6 p.m.41 views

CVE-2009-2637

CVE-2009-2637 refers to a PHP remote file inclusion vulnerability in the BookLibrary (com_booklibrary) Joomla! component. The affected code path is toolbar_ext.php in the 1.5.2.4 Basic release, where an attacker can trigger arbitrary PHP code execution by supplying a URL in the mosConfig_absolute...

7.5CVSS7.8AI score0.0229EPSS