Approved changes feed: RSS · Atom

cpe:2.3:a:1000projects:bookstore_management_system:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor1000Projects (fbc50d54-0232-5a03-8335-413f2b70065f)
ProductBookstore Management System (489fcee1-10f9-5a00-a877-ad00bb121804)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-1174 vulnerable 2026-06-08 07:06:37.089623 1000 Projects Bookstore Management System Add Book Page process_book_add.php cross site scripting
LOW (2.4)
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file process_book_add.php of the component Add Book Page. The manipulation of the argument Book Name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
Published: 2025-02-11T05:00:14.613Z
Updated: 2025-02-11T15:17:59.415Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-1173 vulnerable 2026-06-08 07:06:37.088982 1000 Projects Bookstore Management System process_users_del.php sql injection
MEDIUM (4.7)
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file process_users_del.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely.
Published: 2025-02-11T04:31:04.566Z
Updated: 2025-02-18T17:52:18.302Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-1172 vulnerable 2026-06-08 07:06:37.088479 1000 Projects Bookstore Management System addtocart.php sql injection
MEDIUM (6.3)
A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. Affected by this issue is some unknown functionality of the file addtocart.php. The manipulation of the argument bcid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-02-11T04:00:11.157Z
Updated: 2025-02-18T17:53:25.257Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-10833 vulnerable 2026-06-08 07:02:27.575320 1000projects Bookstore Management System login.php sql injection
HIGH (7.3)
A vulnerability was determined in 1000projects Bookstore Management System 1.0. The impacted element is an unknown function of the file /login.php. This manipulation of the argument unm causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.
Published: 2025-09-23T02:32:06.097Z
Updated: 2025-09-23T14:37:14.939Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-55496 vulnerable 2026-06-08 06:54:17.018549 Details available
A vulnerability has been found in the 1000projects Bookstore Management System PHP MySQL Project 1.0. This issue affects some unknown functionality of add_company.php. Actions on the delete parameter result in SQL injection.
Published: 2024-12-17T00:00:00.000Z
Updated: 2024-12-20T20:56:21.487Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-13002 vulnerable 2026-06-08 06:25:36.492486 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11673 vulnerable 2026-06-08 06:23:50.179977 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11590 vulnerable 2026-06-08 06:23:49.916233 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10998 vulnerable 2026-06-08 06:23:48.361805 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10997 vulnerable 2026-06-08 06:23:48.360900 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10996 vulnerable 2026-06-08 06:23:48.360123 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10969 vulnerable 2026-06-08 06:23:48.308964 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10968 vulnerable 2026-06-08 06:23:48.308222 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10845 vulnerable 2026-06-08 06:23:47.810177 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10844 vulnerable 2026-06-08 06:23:47.809281 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.