Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
book vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-45613
Book Store Management System v1.0 exists to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the publisher parameter.
Book Store Management System Project Book Store Management System 1.0
435
VMScore
CVE-2005-4177
Cross-site scripting (XSS) vulnerability in book.cfm in Magic Book Personal and Professional 2.0 allows remote malicious users to inject arbitrary web script or HTML via the StartRow parameter.
Cfmagic Magic Book Personal 2.0
Cfmagic Magic Book Professional 2.0
1 EDB exploit
NA
CVE-2023-43739
The 'bookisbn' parameter of the cart.php resource does not validate the characters received and they are sent unfiltered to the database.
Online Book Store Project Project Online Book Store Project 1.0
NA
CVE-2023-27250
Online Book Store Project v1.0 is vulnerable to SQL Injection via /bookstore/bookPerPub.php.
Online Book Store Project Project Online Book Store Project 1.0
NA
CVE-2023-4847
A vulnerability classified as problematic has been found in SourceCodester Simple Book Catalog App 1.0. Affected is an unknown function of the component Update Book Form. The manipulation of the argument book_title/book_author leads to cross site scripting. It is possible to laun...
Simple Book Catalog App Project Simple Book Catalog App 1.0
NA
CVE-2023-4848
A vulnerability classified as critical was found in SourceCodester Simple Book Catalog App 1.0. Affected by this vulnerability is an unknown functionality of the file delete_book.php. The manipulation of the argument delete leads to sql injection. The attack can be launched remot...
Simple Book Catalog App Project Simple Book Catalog App 1.0
NA
CVE-2022-45215
A cross-site scripting (XSS) vulnerability in Book Store Management System v1.0.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter under the Add New System User module.
Book Store Management System Project Book Store Management System 1.0
NA
CVE-2022-45217
A cross-site scripting (XSS) vulnerability in Book Store Management System v1.0.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Level parameter under the Add New System User module.
Book Store Management System Project Book Store Management System 1.0.0
NA
CVE-2022-45225
Book Store Management System v1.0 exists to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the book_title parameter.
Book Store Management System Project Book Store Management System 1.0
NA
CVE-2022-3452
A vulnerability was found in SourceCodester Book Store Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /category.php. The manipulation of the argument category_name leads to cross site scripting. The attack can be in...
Book Store Management System Project Book Store Management System 1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »