VYPR

Simple Online Book Store System

by Sourcecodester

CVEs (26)

  • CVE-2021-34249HigFeb 24, 2023
    risk 0.49cvss 7.5epss 0.01

    SQL injection vulnerability in sourcecodester online-book-store 1.0 allows remote attackers to view sensitive information via the id paremeter in application URL.

  • CVE-2024-7798HigAug 15, 2024
    risk 0.48cvss 7.3epss 0.01

    A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login2. The manipulation of the…

  • CVE-2024-7797HigAug 15, 2024
    risk 0.48cvss 7.3epss 0.01

    A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. Affected is an unknown function of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login. The manipulation of the argument username leads to sql…

  • CVE-2024-4927HigMay 16, 2024
    risk 0.48cvss 7.3epss 0.01

    A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/admin/ajax.php?action=save_product. The manipulation leads to…

  • CVE-2025-9700HigAug 30, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in SourceCodester Online Book Store 1.0. This issue affects some unknown processing of the file /publisher_list.php. This manipulation of the argument pubid causes sql injection. It is possible to initiate the attack remotely. The exploit has been published…

  • CVE-2024-7911MedAug 18, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /simple-online-bidding-system/bidding/index.php. The manipulation of the argument page leads to file inclusion. It is…

  • CVE-2024-7800MedAug 15, 2024
    risk 0.41cvss 6.3epss 0.00

    A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=delete_product. The manipulation of the argument id leads to sql…

  • CVE-2024-6951MedJul 21, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Book Store System 1.0. This affects an unknown part of the file admin_delete.php. The manipulation of the argument bookisbn leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-6417MedJun 30, 2024
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/ajax.php?action=delete_user. The manipulation of the argument id leads to sql injection. The…

  • CVE-2024-6280MedJun 24, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/ajax.php?action=save_settings. The manipulation of the argument img leads to unrestricted upload. It is possible to…

  • CVE-2024-4933MedMay 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability has been found in SourceCodester Simple Online Bidding System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/admin/index.php?page=manage_product. The manipulation of the…

  • CVE-2024-4932MedMay 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Bidding System 1.0. Affected is an unknown function of the file /simple-online-bidding-system/admin/index.php?page=manage_user. The manipulation of the argument id leads to sql…

  • CVE-2024-4931MedMay 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, has been found in SourceCodester Simple Online Bidding System 1.0. This issue affects some unknown processing of the file /simple-online-bidding-system/admin/index.php?page=view_udet. The manipulation of the argument id leads to…

  • CVE-2024-4930MedMay 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical was found in SourceCodester Simple Online Bidding System 1.0. This vulnerability affects unknown code of the file /simple-online-bidding-system/index.php?page=view_prod. The manipulation of the argument id leads to sql injection. The attack…

  • CVE-2024-4928MedMay 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /simple-online-bidding-system/admin/ajax.php?action=delete_category. The manipulation of the argument id…

  • CVE-2024-2077MedMar 1, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file index.php. The manipulation of the argument category_id leads to sql injection. It is possible to initiate the attack remotely. The…

  • CVE-2022-2771MedAug 11, 2022
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in SourceCodester Simple Online Book Store System and classified as critical. Affected by this vulnerability is an unknown functionality of the file /obs/bookPerPub.php. The manipulation of the argument bookisbn leads to sql injection. The attack…

  • CVE-2022-2770MedAug 11, 2022
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Book Store System. Affected is an unknown function of the file /obs/book.php. The manipulation of the argument bookisbn leads to sql injection. It is possible to launch the attack…

  • CVE-2022-2747MedAug 11, 2022
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in SourceCodester Simple Online Book Store and classified as critical. This issue affects some unknown processing of the file book.php. The manipulation of the argument book_isbn leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2022-2746MedAug 11, 2022
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in SourceCodester Simple Online Book Store System and classified as critical. This vulnerability affects unknown code of the file Admin_ add.php. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-206014 is the…

Page 1 of 2