CVE-2020-36003

February 18, 2021

The id parameter in detail.php of Online Book Store v1.0 is vulnerable to union-based blind SQL injection, which leads to the ability to retrieve all databases.

Summary:

The id parameter in detail.php of Online Book Store v1.0 is vulnerable to union-based blind SQL injection, which leads to the ability to retrieve all databases.

Reference Links(if available):

  • https://www.sourcecodester.com/download-code?nid=14383&title=Online+Book+Store
  • https://www.sourcecodester.com/php/14383/online-book-store.html
  • https://github.com/TCSWT/Online-Book-Store/blob/main/Online-Book-Store.md

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    image

    [INTERLOCK] – Ransomware Victim: City of Peabody, MA

    July 18, 2025
    image

    [SAFEPAY] – Ransomware Victim: norpak[.]com

    July 18, 2025
    image

    [INTERLOCK] – Ransomware Victim: CB Quality Machining & Engineering

    July 18, 2025
    image

    [INTERLOCK] – Ransomware Victim: Anderson & Karrenberg

    July 18, 2025
    image

    CVE Alert: CVE-2025-7472

    July 18, 2025