Vulnerabilities > Online Book Store Project > Online Book Store > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-04-09 CVE-2020-23763 SQL Injection vulnerability in Online Book Store Project Online Book Store 1.0
SQL injection in admin.php in Online Book Store 1.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication.
network
low complexity
online-book-store-project CWE-89
critical
 9.8
9.8
2020-08-31 CVE-2020-24115 Use of Hard-coded Credentials vulnerability in Online Book Store Project Online Book Store 1.0
In projectworlds Online Book Store 1.0 Use of Hard-coded Credentials in source code leads to admin panel access.
network
low complexity
online-book-store-project CWE-798
critical
 9.8
9.8