CVE-2022-36730 The Library Management System v1.0 had a SQL injection vulnerability.
A successful exploit of this vulnerability could allow an attacker to delete arbitrary data, such as another customer's data, from the system. This
CVE-2022-36735 The Book Library Management System v1.0 had a SQL injection vulnerability.
A remote attacker could exploit this vulnerability to execute arbitrary SQL commands and retrieve sensitive data.
In addition, this software was discovered to contain a
CVE-2022-36734 The Library Management System v1.0 had a SQL injection vulnerability at /admin/delstu.php.
A remote attacker could leverage this vulnerability to execute arbitrary SQL commands, resulting in a complete control of the affected application. In certain cases, the
CVE-2022-36711 The Library Management System v1.0 had a SQL injection vulnerability via the id parameter.
When visiting this path, the user’s input is validated against the standard parameter “id” to ensure that only numbers are entered.
However, the id
CVE-2022-36713 Librarian Management System v1.0 had a SQL injection vulnerability via the Section parameter.
A user with knowledge of SQL injection can exploit this to execute arbitrary SQL commands, bypassing the application's validation mechanisms. In a scenario
Episode
00:00:00
00:00:00