Library Management System Project Library Management System vulnerabilities
32 known vulnerabilities affecting library_management_system_project/library_management_system.
Total CVEs
32
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL23HIGH7MEDIUM2
Vulnerabilities
Page 2 of 2
CVE-2022-36735P3CRITICALCVSS 9.8v1.02022-08-30
CVE-2022-36735 [CRITICAL] CWE-89 CVE-2022-36735: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookI
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /admin/delete.php.
nvd
CVE-2022-36713P3CRITICALCVSS 9.8v1.02022-08-30
CVE-2022-36713 [CRITICAL] CWE-89 CVE-2022-36713: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Secti
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /librarian/lab.php.
nvd
CVE-2022-36734P3CRITICALCVSS 9.8v1.02022-08-30
CVE-2022-36734 [CRITICAL] CWE-89 CVE-2022-36734: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollN
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /admin/delstu.php.
nvd
CVE-2022-36731P3CRITICALCVSS 9.8v1.02022-08-30
CVE-2022-36731 [CRITICAL] CWE-89 CVE-2022-36731: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollN
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /librarian/delstu.php.
nvd
CVE-2022-36708P3CRITICALCVSS 9.8v1.02022-08-28
CVE-2022-36708 [CRITICAL] CWE-89 CVE-2022-36708: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id pa
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /student/bookdetails.php.
nvd
CVE-2022-36712P3CRITICALCVSS 9.8v1.02022-08-30
CVE-2022-36712 [CRITICAL] CWE-89 CVE-2022-36712: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/studentdetails.php.
nvd
CVE-2022-36732P3CRITICALCVSS 9.8v1.02022-08-30
CVE-2022-36732 [CRITICAL] CWE-89 CVE-2022-36732: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /librarian/dele.php.
nvd
CVE-2022-36711P3CRITICALCVSS 9.8v1.02022-08-30
CVE-2022-36711 [CRITICAL] CWE-89 CVE-2022-36711: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/bookdetails.php.
nvd
CVE-2022-36709P3CRITICALCVSS 9.8v1.02022-08-30
CVE-2022-36709 [CRITICAL] CWE-89 CVE-2022-36709: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/edit_book_details.php.
nvd
CVE-2022-36716P3CRITICALCVSS 9.8v1.02022-08-25
CVE-2022-36716 [CRITICAL] CWE-89 CVE-2022-36716: Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id pa
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/changestock.php.
nvd
CVE-2022-2213P4MEDIUMCVSS 5.4v1.02022-06-27
CVE-2022-2213 [MEDIUM] CWE-79 CVE-2022-2213: A vulnerability was found in SourceCodester Library Management System 1.0. It has been declared as p
A vulnerability was found in SourceCodester Library Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/edit_admin_details.php?id=admin. The manipulation of the argument Name leads to cross site scripting. The attack can be launched remotely. The exploit has been disc
nvd
CVE-2022-36657P4MEDIUMCVSS 4.8v1.02022-08-30
CVE-2022-36657 [MEDIUM] CWE-79 CVE-2022-36657: Library Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability
Library Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /librarian/edit_book_details.php.
nvd
← Previous2 / 2