CVE-2022-36704: SQL Injection
First published: Sun Aug 28 2022(Updated: )
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/studentdetails.php.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Library Management System Project Library Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-36704?
The severity of CVE-2022-36704 is rated as high with a score of 8.8.
How do I fix the SQL injection vulnerability in Library Management System v1.0 (CVE-2022-36704)?
To fix the SQL injection vulnerability in Library Management System v1.0, sanitize and validate user inputs and use parameterized queries to prevent SQL injection attacks.
What is the Common Weakness Enumeration (CWE) associated with CVE-2022-36704?
The Common Weakness Enumeration (CWE) associated with CVE-2022-36704 is CWE-89.
- collector/nvd-index
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/references
- agent/author
- agent/last-modified-date
- agent/severity
- agent/description
- agent/tags
- agent/first-publish-date
- agent/event
- vendor/library management system project
- canonical/library management system project library management system
- version/library management system project library management system/1.0