Search Results | AttackerKB

Show filters

Topics 37 Users 9,712

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

37 Total Results

Displaying 1-10 of 37

Attacker Value

Unknown

CVE-2022-37794

Disclosure Date: September 12, 2022 (last updated October 08, 2023)

In Library Management System 1.0 the /card/in-card.php file id_no parameters are vulnerable to SQL injection.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-36735

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /admin/delete.php.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-36734

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /admin/delstu.php.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-36733

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the M_Id parameter at /admin/del.php.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-36732

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /librarian/dele.php.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-36731

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /librarian/delstu.php.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-36730

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /librarian/delete.php.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-36657

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /librarian/edit_book_details.php.

Attack Vector: Network Privileges: High User Interaction: Required

0

Attacker Value

Unknown

CVE-2022-36714

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /staff/lab.php.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-36713

Disclosure Date: August 30, 2022 (last updated October 08, 2023)

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /librarian/lab.php.

Attack Vector: Network Privileges: None User Interaction: None

0