Vulnerability Details CVE-2020-28073
SourceCodester Library Management System 1.0 is affected by SQL Injection allowing an attacker to bypass the user authentication and impersonate any user on the system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 74.0%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://packetstormsecurity.com/files/160606/Library-Management-System-1.0-SQL-Injection.html
- https://www.sourcecodester.com/php/14545/online-library-management-system-phpmysqli-full-source-code-2020.html
- http://packetstormsecurity.com/files/160606/Library-Management-System-1.0-SQL-Injection.html
- https://www.sourcecodester.com/php/14545/online-library-management-system-phpmysqli-full-source-code-2020.html
Products affected by CVE-2020-28073
-
cpe:2.3:a:library_management_system_project:library_management_system:1.0