1000projects Bookstore Management System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in 1000projects Bookstore Management System.
By the Year
In 2026 there have been 0 vulnerabilities in 1000projects Bookstore Management System. Last year, in 2025 Bookstore Management System had 4 security vulnerabilities published. Right now, Bookstore Management System is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 4 | 7.03 |
| 2024 | 11 | 9.25 |
It may take a day or so for new Bookstore Management System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent 1000projects Bookstore Management System Security Vulnerabilities
1000projects Bookstore Management System 1.0: Remote SQLi via /login.php
CVE-2025-10833
7.3 - High
- September 23, 2025
A vulnerability was determined in 1000projects Bookstore Management System 1.0. The impacted element is an unknown function of the file /login.php. This manipulation of the argument unm causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.
SQL Injection
XSS in 1000 Projects Bookstore Management System 1.0 Add Book Page
CVE-2025-1174
4.8 - Medium
- February 11, 2025
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file process_book_add.php of the component Add Book Page. The manipulation of the argument Book Name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
XSS
SQLi in 1000 Projects Bookstore 1.0 (process_users_del.php Id)
CVE-2025-1173
7.2 - High
- February 11, 2025
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file process_users_del.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely.
SQL Injection
1000 Projects Bookstore MS 1.0 AddToCart.php bcid SQLi Remote
CVE-2025-1172
8.8 - High
- February 11, 2025
A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. Affected by this issue is some unknown functionality of the file addtocart.php. The manipulation of the argument bcid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Critical SQLi in 1000 Projects Bookstore Management System 1.0 /order_process.php
CVE-2024-13002
9.8 - Critical
- December 29, 2024
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /order_process.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection Vulnerability in 1000projects Bookstore Management System PHP MySQL Project
CVE-2024-55496
- December 17, 2024
A vulnerability has been found in the 1000projects Bookstore Management System PHP MySQL Project 1.0. This issue affects some unknown functionality of add_company.php. Actions on the delete parameter result in SQL injection.
CVE-2024-11673: 1000 Projects Bookstore 1.0 XSRF Remote
CVE-2024-11673
4.3 - Medium
- November 25, 2024
A vulnerability, which was classified as problematic, has been found in 1000 Projects Bookstore Management System 1.0. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Session Riding
SQL Injection Vulnerability in 1000 Projects Bookstore Management System's Password Reset Functional
CVE-2024-11590
9.8 - Critical
- November 21, 2024
A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. Affected by this issue is some unknown functionality of the file /forget_password_process.php. The manipulation of the argument unm leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection in Bookstore Management System process_category_add.php - November 2024
CVE-2024-10998
9.8 - Critical
- November 08, 2024
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/process_category_add.php. The manipulation of the argument cat leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection in Book List of 1000 Projects Bookstore Management System 1.0
CVE-2024-10997
9.8 - Critical
- November 08, 2024
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /book_list.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection in Category Edit of Bookstore Management System 1.0
CVE-2024-10996
9.8 - Critical
- November 08, 2024
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/process_category_edit.php. The manipulation of the argument cat leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection in Bookstore Management System Login
CVE-2024-10969
9.8 - Critical
- November 07, 2024
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/login_process.php of the component Login. The manipulation of the argument unm/pwd leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection in Bookstore Management System 1.0
CVE-2024-10968
9.8 - Critical
- November 07, 2024
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /contact_process.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection in Bookstore Management System 1.0
CVE-2024-10845
9.8 - Critical
- November 05, 2024
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file book_detail.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
SQL Injection in Bookstore Management System 1.0
CVE-2024-10844
9.8 - Critical
- November 05, 2024
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file search.php. The manipulation of the argument s leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for 1000projects Bookstore Management System or by 1000projects? Click the Watch button to subscribe.
