Vulnerabilities > Slims > Senayan Library Management System > 9.4.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-01 | CVE-2022-43361 | Cross-site Scripting vulnerability in Slims Senayan Library Management System 9.4.2 Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the component pop_chart.php. | 4.8 |
| 2022-11-01 | CVE-2022-43362 | SQL Injection vulnerability in Slims Senayan Library Management System 9.4.2 Senayan Library Management System v9.4.2 was discovered to contain a SQL injection vulnerability via the collType parameter at loan_by_class.php. | 7.2 |
| 2022-09-12 | CVE-2022-38291 | Cross-site Scripting vulnerability in Slims Senayan Library Management System 9.4.2 SLiMS Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the Search function. | 6.1 |
| 2022-09-12 | CVE-2022-38292 | Server-Side Request Forgery (SSRF) vulnerability in Slims Senayan Library Management System 9.4.2 SLiMS Senayan Library Management System v9.4.2 was discovered to contain multiple Server-Side Request Forgeries via the components /bibliography/marcsru.php and /bibliography/z3950sru.php. | 9.8 |
| 2022-03-17 | CVE-2021-45793 | SQL Injection vulnerability in Slims Senayan Library Management System 9.4.2 Slims9 Bulian 9.4.2 is affected by SQL injection in lib/comment.inc.php. | 7.5 |
| 2022-03-17 | CVE-2021-45794 | SQL Injection vulnerability in Slims Senayan Library Management System 9.4.2 Slims9 Bulian 9.4.2 is affected by SQL injection in /admin/modules/system/backup.php. | 7.5 |
| 2022-03-17 | CVE-2021-45792 | Cross-site Scripting vulnerability in Slims Senayan Library Management System 9.4.2 Slims9 Bulian 9.4.2 is affected by Cross Site Scripting (XSS) in /admin/modules/system/custom_field.php. | 4.8 |