Slims Security Vulnerabilities and Issues — Slims CVE List

Lucene search

Slims ProjectSlims

4 matches found

CVE•added 2024/02/21 5:15 p.m.•4234 views

CVE-2024-25288

SLIMS (Senayan Library Management Systems) 9 Bulian v9.6.1 is vulnerable to SQL Injection via pop-scope-vocabolary.php.

4.9CVSS8AI score0.00226EPSS

CVE•added 2018/06/22 3:29 p.m.•40 views

CVE-2018-12658

Reflected Cross-Site Scripting (XSS) exists in the Stock Take module in SLiMS 8 Akasia 8.3.1 via an admin/modules/stock_take/index.php?keywords= URI.

6.1CVSS6AI score0.0024EPSS

CVE•added 2023/10/02 2:15 p.m.•40 views

CVE-2023-3744

Server-Side Request Forgery vulnerability in SLims version 9.6.0. This vulnerability could allow an authenticated attacker to send requests to internal services or upload the contents of relevant files via the "scrape_image.php" file in the imageURL parameter.

9.9CVSS9.1AI score0.00075EPSS

CVE•added 2023/02/13 9:15 p.m.•35 views

CVE-2023-24086

SLIMS v9.5.2 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /customs/loan_by_class.php?reportView.

6.1CVSS6AI score0.0009EPSS