Library Management System Project Library Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Library Management System Project Library Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (34)
CVE-2022-37794 — CVSS 9.8 (critical): In Library Management System 1.0 the /card/in-card.php file id_no parameters are vulnerable to SQL injection.
CVE-2020-28073 — CVSS 9.8 (critical): SourceCodester Library Management System 1.0 is affected by SQL Injection allowing an attacker to bypass the user authentication and…
CVE-2022-36725 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the M_Id parameter at /student/dele.php.
CVE-2022-36727 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /staff/delete.php.
CVE-2022-36728 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /staff/delstu.php.
CVE-2022-36729 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the M_Id parameter at /librarian/del.php.
CVE-2022-36730 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /librarian/delete.php.
CVE-2022-36731 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /librarian/delstu.php.
CVE-2022-36732 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /librarian/dele.php.
CVE-2022-36733 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the M_Id parameter at /admin/del.php.
CVE-2022-36734 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /admin/delstu.php.
CVE-2022-36735 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /admin/delete.php.
CVE-2022-36708 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /student/bookdetails.php.
CVE-2022-36709 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/edit_book_details.php.
CVE-2022-36711 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/bookdetails.php.
CVE-2022-36712 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/studentdetails.php.
CVE-2022-36713 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /librarian/lab.php.
CVE-2022-36714 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /staff/lab.php.
CVE-2022-36715 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/search.php.
CVE-2022-36716 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/changestock.php.
CVE-2022-36719 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok parameter at /admin/history.php.
CVE-2022-36722 — CVSS 9.8 (critical): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the title parameter at /librarian/history.php.
CVE-2022-36721 — CVSS 8.8 (high): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Textbook parameter at /admin/modify.php.
CVE-2022-36720 — CVSS 8.8 (high): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/modify1.php.
CVE-2022-36704 — CVSS 8.8 (high): Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/studentdetails.php…
CVE-2022-2492 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Library Management System 1.0 and classified as critical. This issue affects some unknown…
CVE-2022-2774 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Library Management System. It has been declared as critical. This vulnerability affects unknown…
CVE-2022-2212 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Library Management System 1.0. It has been classified as critical. Affected is an unknown…
CVE-2022-2214 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Library Management System 1.0. It has been rated as critical. Affected by this issue is some…
CVE-2022-2491 — CVSS 6.3 (medium): A vulnerability has been found in SourceCodester Library Management System 1.0 and classified as critical. This vulnerability affects…
CVE-2022-36657 — CVSS 4.8 (medium): Library Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component…
CVE-2022-2768 — CVSS 3.5 (low): A vulnerability classified as problematic was found in SourceCodester Library Management System. This vulnerability affects unknown code of…
CVE-2022-2213 — CVSS 3.5 (low): A vulnerability was found in SourceCodester Library Management System 1.0. It has been declared as problematic. Affected by this…