Skip to main content

Simple Library Management System

4 CVEs product

Monthly

CVE-2024-40402 MEDIUM POC This Month

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Simple Library Management System
NVD GitHub
CVSS 3.1
6.3
EPSS
0.4%
CVE-2024-40394 CRITICAL POC Act Now

Simple Library Management System Project Using PHP/MySQL v1.0 was discovered to contain an arbitrary file upload vulnerability via the component ajax.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Simple Library Management System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2020-25515 HIGH This Week

Sourcecodester Simple Library Management System 1.0 is affected by Insecure Permissions via Books > New Book , http://<site>/lms/index.php?page=books. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

File Upload PHP Simple Library Management System
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.5%
CVE-2020-25514 HIGH This Week

Sourcecodester Simple Library Management System 1.0 is affected by Incorrect Access Control via the Login Panel, http://<site>/lms/admin.php. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Simple Library Management System
NVD GitHub VulDB
CVSS 3.1
8.4
EPSS
0.6%
EPSS 0% CVSS 6.3
MEDIUM POC This Month

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Simple Library Management System
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Simple Library Management System Project Using PHP/MySQL v1.0 was discovered to contain an arbitrary file upload vulnerability via the component ajax.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Simple Library Management System
NVD GitHub
EPSS 1% CVSS 7.8
HIGH This Week

Sourcecodester Simple Library Management System 1.0 is affected by Insecure Permissions via Books > New Book , http://<site>/lms/index.php?page=books. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

File Upload PHP Simple Library Management System
NVD GitHub VulDB
EPSS 1% CVSS 8.4
HIGH This Week

Sourcecodester Simple Library Management System 1.0 is affected by Incorrect Access Control via the Login Panel, http://<site>/lms/admin.php. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Simple Library Management System
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy