library_management_system_project 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
公開された問題は vendor risk sql injection and vendor risk cross-site scripting に関連することが多く、vendor surface software deployment and vendor surface production workloads の文脈で vendor impact data exposure and vendor impact session compromise などの暴露リスクを伴う場合があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2022-37794 | In Library Management System 1.0 the /card/in-card.php file id_no parameters are vulnerable to SQL injection. | [email protected] | 9.8 | 0.31% | 2022-09-12 | 2024-11-21 |
| CVE-2022-36735 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /admin/delete.php. | [email protected] | 9.8 | 0.32% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36734 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /admin/delstu.php. | [email protected] | 9.8 | 0.31% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36733 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the M_Id parameter at /admin/del.php. | [email protected] | 9.8 | 0.31% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36732 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /librarian/dele.php. | [email protected] | 9.8 | 0.31% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36731 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /librarian/delstu.php. | [email protected] | 9.8 | 0.32% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36730 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /librarian/delete.php. | [email protected] | 9.8 | 0.32% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36657 | Library Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /librarian/edit_book_details.php. | [email protected] | 4.8 | 0.26% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36714 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /staff/lab.php. | [email protected] | 9.8 | 0.32% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36713 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /librarian/lab.php. | [email protected] | 9.8 | 0.32% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36712 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/studentdetails.php. | [email protected] | 9.8 | 0.32% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36711 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/bookdetails.php. | [email protected] | 9.8 | 0.32% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36709 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/edit_book_details.php. | [email protected] | 9.8 | 0.32% | 2022-08-30 | 2024-11-21 |
| CVE-2022-36708 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /student/bookdetails.php. | [email protected] | 9.8 | 0.31% | 2022-08-28 | 2024-11-21 |
| CVE-2022-36704 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/studentdetails.php. | [email protected] | 8.8 | 0.31% | 2022-08-28 | 2024-11-21 |
| CVE-2022-36721 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Textbook parameter at /admin/modify.php. | [email protected] | 8.8 | 0.31% | 2022-08-25 | 2024-11-21 |
| CVE-2022-36720 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/modify1.php. | [email protected] | 8.8 | 0.31% | 2022-08-25 | 2024-11-21 |
| CVE-2022-36719 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok parameter at /admin/history.php. | [email protected] | 9.8 | 0.32% | 2022-08-25 | 2024-11-21 |
| CVE-2022-36716 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/changestock.php. | [email protected] | 9.8 | 0.32% | 2022-08-25 | 2024-11-21 |
| CVE-2022-36715 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/search.php. | [email protected] | 9.8 | 0.32% | 2022-08-25 | 2024-11-21 |