Online Book Store Project Project Online Book Store Project — known CVE vulnerabilities
Every CVE whose affected-product data names Online Book Store Project Project Online Book Store Project, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2023-43739 — CVSS 9.8 (critical): The 'bookisbn' parameter of the cart.php resource does not validate the characters received and they are sent unfiltered to the database.