Vulnerabilities (CVE)

  1. Yack CVE
  2. Vulnerabilities (CVE)
Filtered by vendor Online Book Store Project Project
Filtered by product Online Book Store Project
Angry Yack Logo
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-27250 1 Online Book Store Project Project 1 Online Book Store Project 2025-02-26 N/A 9.8 CRITICAL
Online Book Store Project v1.0 is vulnerable to SQL Injection via /bookstore/bookPerPub.php.
CVE-2023-43739 1 Online Book Store Project Project 1 Online Book Store Project 2024-11-21 N/A 9.8 CRITICAL
The 'bookisbn' parameter of the cart.php resource does not validate the characters received and they are sent unfiltered to the database.