Summary:

The id parameter in detail.php of Online Book Store v1.0 is vulnerable to union-based blind SQL injection, which leads to the ability to retrieve all databases.

Reference Links(if available):

CVSS Score (if available)

v2: / MEDIUM

v3: /

Links to Exploits(if available)