VYPR

Advanced Library Management System

by Projectworlds

CVEs (17)

  • CVE-2025-14571HigDec 12, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /borrow_book.php. Such manipulation of the argument roll_number leads to sql injection. The attack may be launched remotely.…

  • CVE-2025-14570HigDec 12, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view_admin.php. This manipulation of the argument admin_id causes sql injection. The attack may be initiated remotely. The…

  • CVE-2025-14527HigDec 11, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in projectworlds Advanced Library Management System 1.0. This vulnerability affects unknown code of the file /view_book.php. Executing a manipulation of the argument book_id can lead to sql injection. The attack can be executed remotely. The…

  • CVE-2025-14212HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /member_search.php. Executing a manipulation of the argument roll_number can lead to sql injection. The attack may be launched…

  • CVE-2025-14211HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /delete_book.php. Performing a manipulation of the argument book_id results in sql injection. The attack may be initiated…

  • CVE-2025-14210HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in projectworlds Advanced Library Management System 1.0. Affected is an unknown function of the file /delete_member.php. Such manipulation of the argument user_id leads to sql injection. The attack can be launched remotely. The exploit…

  • CVE-2025-13572HigNov 23, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Advanced Library Management System 1.0. This affects an unknown part of the file /delete_admin.php. The manipulation of the argument admin_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is…

  • CVE-2025-12237HigOct 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /index.php. Such manipulation of the argument keywords leads to sql injection. The attack can be executed remotely. The exploit is publicly…

  • CVE-2025-11475HigOct 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /view_member.php. Executing a manipulation of the argument user_id can lead to sql injection. The attack can be launched…

  • CVE-2025-13573MedNov 24, 2025
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in projectworlds can pass malicious payloads up to 1.0. This vulnerability affects unknown code of the file /add_book.php. The manipulation of the argument image results in unrestricted upload. The attack can be executed remotely. The exploit…

  • CVE-2025-13278MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrowed_book_search.php. Such manipulation of the argument datefrom/dateto leads to sql injection. The attack can be launched remotely. The…

  • CVE-2025-13256MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrow.php. Executing a manipulation of the argument roll_number can lead to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-13255MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in projectworlds Advanced Library Management System 1.0. This issue affects some unknown processing of the file /book_search.php. Performing a manipulation of the argument book_pub/book_title results in sql injection. It is possible to…

  • CVE-2025-13254MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in projectworlds Advanced Library Management System 1.0. This vulnerability affects unknown code of the file /add_member.php. Such manipulation of the argument roll_number leads to sql injection. The attack may be performed from remote. The exploit…

  • CVE-2025-13253MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in projectworlds Advanced Library Management System 1.0. This affects an unknown part of the file /add_librarian.php. This manipulation of the argument Username causes sql injection. The attack is possible to be carried out remotely. The exploit…

  • CVE-2025-11426MedOct 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit_book.php. The manipulation of the argument image results in unrestricted upload. It is possible to launch the…

  • CVE-2025-11425LowOct 8, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was identified in projectworlds Advanced Library Management System 1.0. Affected is an unknown function of the file /edit_admin.php. The manipulation of the argument firstname leads to cross site scripting. It is possible to initiate the attack remotely. The…