Vendor
Senayan
Products
2
CVEs
2
Across products
2
Status
Private
Products
2- 2 CVEs
- 0 CVEs
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-48893 | Hig | 0.57 | 8.8 | 0.01 | Dec 1, 2023 | SLiMS (aka SENAYAN Library Management System) through 9.6.1 allows admin/modules/reporting/customs/staff_act.php SQL Injection via startDate or untilDate. | ||
| CVE-2023-29850 | Hig | 0.49 | 7.5 | 0.01 | Apr 14, 2023 | SENAYAN Library Management System (SLiMS) Bulian v9.5.2 does not strip exif data from uploaded images. This allows attackers to obtain information such as the user's geolocation and device information. |
- risk 0.57cvss 8.8epss 0.01
SLiMS (aka SENAYAN Library Management System) through 9.6.1 allows admin/modules/reporting/customs/staff_act.php SQL Injection via startDate or untilDate.
- risk 0.49cvss 7.5epss 0.01
SENAYAN Library Management System (SLiMS) Bulian v9.5.2 does not strip exif data from uploaded images. This allows attackers to obtain information such as the user's geolocation and device information.