Vulnerabilities > Book Store Management System Project

DATE CVE VULNERABILITY TITLE RISK
2023-01-20 CVE-2023-23024 Cross-site Scripting vulnerability in Book Store Management System Project Book Store Management System 1.0
Book Store Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book.
6.1
2023-01-18 CVE-2022-45613 Cross-site Scripting vulnerability in Book Store Management System Project Book Store Management System 1.0
Book Store Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book.
5.4
2022-12-07 CVE-2022-45217 Cross-site Scripting vulnerability in Book Store Management System Project Book Store Management System 1.0.0
A cross-site scripting (XSS) vulnerability in Book Store Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Level parameter under the Add New System User module.
5.4
2022-12-02 CVE-2022-45215 Cross-site Scripting vulnerability in Book Store Management System Project Book Store Management System 1.0
A cross-site scripting (XSS) vulnerability in Book Store Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter under the Add New System User module.
5.4
2022-11-30 CVE-2022-4228 Missing Authentication for Critical Function vulnerability in Book Store Management System Project Book Store Management System 1.0
A vulnerability classified as problematic has been found in SourceCodester Book Store Management System 1.0.
7.5
2022-11-30 CVE-2022-4229 Missing Authentication for Critical Function vulnerability in Book Store Management System Project Book Store Management System 1.0
A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0.
network
low complexity
book-store-management-system-project CWE-306
critical
9.8
2022-11-30 CVE-2022-44097 Use of Hard-coded Credentials vulnerability in Book Store Management System Project Book Store Management System 1.0
Book Store Management System v1.0 was discovered to contain hardcoded credentials which allows attackers to escalate privileges and access the admin panel.
network
low complexity
book-store-management-system-project CWE-798
critical
9.8
2022-11-25 CVE-2022-45225 Cross-site Scripting vulnerability in Book Store Management System Project Book Store Management System 1.0
Book Store Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book.
6.1
2022-10-11 CVE-2022-3452 Unspecified vulnerability in Book Store Management System Project Book Store Management System 1.0
A vulnerability was found in SourceCodester Book Store Management System 1.0.
network
low complexity
book-store-management-system-project
5.4
2022-10-11 CVE-2022-3453 Unspecified vulnerability in Book Store Management System Project Book Store Management System 1.0
A vulnerability was found in SourceCodester Book Store Management System 1.0.
network
low complexity
book-store-management-system-project
5.4