CVE-2024-10997

Name of the Vulnerable Software and Affected Versions 1000 Projects Bookstore Management System version 1.0

Description A critical issue has been found in the 1000 Projects Bookstore Management System. The problem affects the file /book list.php and is related to the manipulation of the id argument, which leads to SQL injection. This issue can be exploited remotely.

Recommendations For version 1.0, consider disabling access to the /book list.php file until a patch is available. As a temporary workaround, restrict the manipulation of the id argument to minimize the risk of SQL injection exploitation.