CVE-2025-22980

Medium CVSS: 6.7

A SQL Injection vulnerability exists in Senayan Library Management System SLiMS 9 Bulian 9.6.1 via the tempLoanID parameter in the loan form on /admin/modules/circulation/loan.php.

Vendor

Slims

Product

Senayan Library Management System Bulian

CWE

CWE-89

Yayın Tarihi

2025-01-22 15:15:15

Güncelleme

2025-06-18 16:01:17

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-89 Senayan Library Management System Bulian MEDIUM Slims 2025

Referanslar

https://github.com/slims/slims9_bulian/issues/270 https://mebroccoli.blogspot.com/2025/01/sql-injection-vulnerability-in-senayan.html

Benzer Kayıtlar

Medium

CVE-2025-45818

Slims (Senayan Library Management Systems) 9 Bulian 9.6.1 is vulnerable to SQL Injection in admin/modules/master_file/it…

Medium

CVE-2025-45819

Slims (Senayan Library Management Systems) 9 Bulian 9.6.1 is vulnerable to SQL Injection in admin/modules/master_file/au…

Medium

CVE-2025-45820

Slims (Senayan Library Management Systems) 9 Bulian 9.6.1 is vulnerable to SQL Injection in admin/modules/bibliography/p…

High

CVE-2025-26200

SQL injection in SLIMS v.9.6.1 allows a remote attacker to escalate privileges via the month parameter in the visitor_re…