Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
online book store project online book store 1.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-36003
The id parameter in detail.php of Online Book Store v1.0 is vulnerable to union-based blind SQL injection, which leads to the ability to retrieve all databases.
Online Book Store Project Online Book Store 1.0
NA
CVE-2021-34249
SQL injection vulnerability in sourcecodester online-book-store 1.0 allows remote malicious users to view sensitive information via the id paremeter in application URL.
Online Book Store Project Online Book Store 1.0
7.5
CVSSv2
CVE-2020-23763
SQL injection in admin.php in Online Book Store 1.0 allows remote malicious users to execute arbitrary SQL commands and bypass authentication.
Online Book Store Project Online Book Store 1.0
5
CVSSv2
CVE-2020-24115
In projectworlds Online Book Store 1.0 Use of Hard-coded Credentials in source code leads to admin panel access.
Online Book Store Project Online Book Store 1.0
NA
CVE-2023-27250
Online Book Store Project v1.0 is vulnerable to SQL Injection via /bookstore/bookPerPub.php.
Online Book Store Project Project Online Book Store Project 1.0
NA
CVE-2023-43739
The 'bookisbn' parameter of the cart.php resource does not validate the characters received and they are sent unfiltered to the database.
Online Book Store Project Project Online Book Store Project 1.0
NA
CVE-2023-43740
Online Book Store Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'image' parameter of admin_edit.php page, allowing an authenticated malicious user to obtain Remote Code Execution on the server hosting the application.
Projectworlds Online Book Store Project 1.0
7.5
CVSSv2
CVE-2020-19107
SQL Injection vulnerability in Online Book Store v1.0 via the isbn parameter to edit_book.php, which could let a remote malicious user execute arbitrary code.
Projectworlds Online Book Store Project In Php 1.0
7.5
CVSSv2
CVE-2020-19108
SQL Injection vulnerability in Online Book Store v1.0 via the pubid parameter to bookPerPub.php, which could let a remote malicious user execute arbitrary code.
Projectworlds Online Book Store Project In Php 1.0
7.5
CVSSv2
CVE-2020-19109
SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to admin_edit.php, which could let a remote malicious user execute arbitrary code.
Projectworlds Online Book Store Project In Php 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »