Skip to main content

Online Book Store Project In Php

2 CVEs product

Monthly

CVE-2021-43156 MEDIUM POC This Month

In ProjectWorlds Online Book Store PHP 1.0 a CSRF vulnerability in admin_delete.php allows a remote attacker to delete any book. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Online Book Store Project In Php
NVD GitHub
CVSS 3.1
6.5
EPSS
0.5%
CVE-2021-43155 CRITICAL POC Act Now

Projectsworlds Online Book Store PHP v1.0 is vulnerable to SQL injection via the "bookisbn" parameter in cart.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Book Store Project In Php
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
EPSS 1% CVSS 6.5
MEDIUM POC This Month

In ProjectWorlds Online Book Store PHP 1.0 a CSRF vulnerability in admin_delete.php allows a remote attacker to delete any book. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Online Book Store Project In Php
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Projectsworlds Online Book Store PHP v1.0 is vulnerable to SQL injection via the "bookisbn" parameter in cart.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Book Store Project In Php
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy