GHSA-6hff-5fjr-6943MediumCVSS 7.3
A security flaw has been discovered in SourceCodester Online Book Store System 1.0. This...
🔗 CVE IDs covered (1)
📋 Description
A security flaw has been discovered in SourceCodester Online Book Store System 1.0. This vulnerability affects unknown code of the file admin/login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.
🔗 References (8)
- https://nvd.nist.gov/vuln/detail/CVE-2026-15537
- https://medium.com/@gauravkumar67482/sql-injection-leading-to-authentication-bypass-43b773da1967
- https://vuldb.com/cve/CVE-2026-15537
- https://vuldb.com/submit/855010
- https://vuldb.com/vuln/377887
- https://vuldb.com/vuln/377887/cti
- https://www.sourcecodester.com
- https://github.com/advisories/GHSA-6hff-5fjr-6943