CVE-2020-25515

CVE-2020-25515 affects Sourcecodester Simple Library Management System 1.0. The vulnerability is described as insecure permissions via Books > New Book (path: /lms/index.php?page=books). CVSS metrics indicate moderate to high impact (CVSS2 Base 4.6; CVSS3.1 Base 7.8) with local attack vector a...

CVE-2020-25514

CVE-2020-25514 affects Sourcecodester Simple Library Management System 1.0. The vulnerability is an Incorrect Access Control flaw via the login panel at /lms/admin.php, enabling potential bypass of authentication. Public references corroborate an authentication bypass vector and exposure of admin...