CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 1CVE-2020-25514
https://notcve.org/view.php?id=CVE-2020-25514
Sourcecodester Simple Library Management System 1.0 is affected by Incorrect Access Control via the Login Panel, http://<site>/lms/admin.php. Sourcecodester Simple Library Management System versión 1.0, está afectado por un Control de Acceso Incorrecto por medio del Panel de Inicio de Sesión, http://(site)/lms/admin.php • https://github.com/Ko-kn3t/CVE-2020-25514 http://simple.com https://www.sourcecodester.com • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-18796 – Library Management System 1.0 SQL Injection
https://notcve.org/view.php?id=CVE-2018-18796
Library Management System 1.0 has SQL Injection via the "Search for Books" screen. Library Management System 1.0 tiene una inyección SQL mediante la pantalla "Search for Books". Library Management System version 1.0 suffers from a remote SQL injection vulnerability. • http://packetstormsecurity.com/files/149987/Library-Management-System-1.0-SQL-Injection.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •