5 matches found
CVE-2022-2746
CVE-2025-66802 affects Sourcecodester Covid-19 Contact Tracing System 1.0. The connected documents describe an RCE (Remote Code Execution) vulnerability that allows a reverse shell (PHP) into the user’s image, enabling RCE. There is no publicly documented fix/version in these sources; PT-2026-229...
CVE-2022-2748
The CVE-2022-2748 entry concerns SourceCodester Simple Online Book Store System. Affected is an unknown function in /admin/edit.php where manipulation of the eid parameter leads to cross-site scripting. The vulnerability can be triggered remotely. The available records describe the issue and its ...
CVE-2022-2770
CVE-2022-2770 affects SourceCodester Simple Online Book Store System. Affected component: the file /obs/book.php. The vulnerability stems from manipulation of the bookisbn parameter, enabling SQL injection and allowing remote attack access. The CVE is labeled CRITICAL in some sources, with an att...
CVE-2022-2747
CVE-2022-2747 affects SourceCodester Simple Online Book Store. The vulnerability resides in book.php where the book_isbn parameter is manipulated, enabling SQL injection. Attacks can be carried out remotely without authentication, with potential high impact on confidentiality, integrity, and avai...
CVE-2022-2771
SourceCodester Simple Online Book Store System is affected by CVE-2022-2771. The vulnerability lies in the /obs/bookPerPub.php endpoint, where manipulation of the bookisbn parameter enables SQL injection. The issue is exploitable remotely and impacts confidentiality, integrity, and availability a...