Library Management System Project Library Management System vulnerabilities

32 known vulnerabilities affecting library_management_system_project/library_management_system.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL23HIGH7MEDIUM2

Vulnerabilities

Page 1 of 2

CVE-2022-37794CRITICALCVSS 9.8v1.02022-09-12

CVE-2022-37794 [CRITICAL] CWE-89 CVE-2022-37794: In Library Management System 1.0 the /card/in-card.php file id_no parameters are vulnerable to SQL i In Library Management System 1.0 the /card/in-card.php file id_no parameters are vulnerable to SQL injection.

nvd

CVE-2022-36730CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36730 [CRITICAL] CWE-89 CVE-2022-36730: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookI Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /librarian/delete.php.

nvd

CVE-2022-36712CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36712 [CRITICAL] CWE-89 CVE-2022-36712: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/studentdetails.php.

nvd

CVE-2022-36732CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36732 [CRITICAL] CWE-89 CVE-2022-36732: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /librarian/dele.php.

nvd

CVE-2022-36714CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36714 [CRITICAL] CWE-89 CVE-2022-36714: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Secti Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /staff/lab.php.

nvd

CVE-2022-36733CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36733 [CRITICAL] CWE-89 CVE-2022-36733: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the M_Id Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the M_Id parameter at /admin/del.php.

nvd

CVE-2022-36711CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36711 [CRITICAL] CWE-89 CVE-2022-36711: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/bookdetails.php.

nvd

CVE-2022-36735CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36735 [CRITICAL] CWE-89 CVE-2022-36735: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookI Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /admin/delete.php.

nvd

CVE-2022-36709CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36709 [CRITICAL] CWE-89 CVE-2022-36709: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/edit_book_details.php.

nvd

CVE-2022-36713CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36713 [CRITICAL] CWE-89 CVE-2022-36713: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Secti Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /librarian/lab.php.

nvd

CVE-2022-36734CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36734 [CRITICAL] CWE-89 CVE-2022-36734: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollN Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /admin/delstu.php.

nvd

CVE-2022-36731CRITICALCVSS 9.8v1.02022-08-30

CVE-2022-36731 [CRITICAL] CWE-89 CVE-2022-36731: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollN Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /librarian/delstu.php.

nvd

CVE-2022-36657MEDIUMCVSS 4.8v1.02022-08-30

CVE-2022-36657 [MEDIUM] CWE-79 CVE-2022-36657: Library Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability Library Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /librarian/edit_book_details.php.

nvd

CVE-2022-36708CRITICALCVSS 9.8v1.02022-08-28

CVE-2022-36708 [CRITICAL] CWE-89 CVE-2022-36708: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /student/bookdetails.php.

nvd

CVE-2022-36704HIGHCVSS 8.8v1.02022-08-28

CVE-2022-36704 [HIGH] CWE-89 CVE-2022-36704: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/studentdetails.php.

nvd

CVE-2022-36715CRITICALCVSS 9.8v1.02022-08-25

CVE-2022-36715 [CRITICAL] CWE-89 CVE-2022-36715: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the name Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/search.php.

nvd

CVE-2022-36719CRITICALCVSS 9.8v1.02022-08-25

CVE-2022-36719 [CRITICAL] CWE-89 CVE-2022-36719: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok parameter at /admin/history.php.

nvd

CVE-2022-36716CRITICALCVSS 9.8v1.02022-08-25

CVE-2022-36716 [CRITICAL] CWE-89 CVE-2022-36716: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/changestock.php.

nvd

CVE-2022-36720HIGHCVSS 8.8v1.02022-08-25

CVE-2022-36720 [HIGH] CWE-89 CVE-2022-36720: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/modify1.php.

nvd

CVE-2022-36721HIGHCVSS 8.8v1.02022-08-25

CVE-2022-36721 [HIGH] CWE-89 CVE-2022-36721: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Textb Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Textbook parameter at /admin/modify.php.

nvd

1 / 2Next →