Vulnerabilities

CVE-2025-13278

by Fred · 17/11/2025

A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrowed_book_search.php. Such manipulation of the argument datefrom/dateto leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

More information : https://github.com/CH0ico/CVE_choco_1/blob/master/report.md

Similar

Tags: Cybersecurity Alert