CVE-2025-22980

A SQL Injection vulnerability exists in Senayan Library Management System SLiMS 9 Bulian 9.6.1 via the tempLoanID parameter in the loan form on /admin/modules/circulation/loan.php.

CVSS

No CVSS.

References

Link	Resource
https://github.com/slims/slims9_bulian/issues/270	Exploit Third Party Advisory Issue Tracking
https://mebroccoli.blogspot.com/2025/01/sql-injection-vulnerability-in-senayan.html	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:slims:senayan_library_management_system_bulian:9.6.1:*:*:*:*:*:*:*

History

18 Jun 2025, 16:01

Type	Values Removed	Values Added
First Time		Slims Slims senayan Library Management System Bulian
CPE		cpe:2.3:a:slims:senayan_library_management_system_bulian:9.6.1:::::::*
References	~~() https://mebroccoli.blogspot.com/2025/01/sql-injection-vulnerability-in-senayan.html -~~	() https://mebroccoli.blogspot.com/2025/01/sql-injection-vulnerability-in-senayan.html - Exploit, Third Party Advisory
References	~~() https://github.com/slims/slims9_bulian/issues/270 -~~	() https://github.com/slims/slims9_bulian/issues/270 - Exploit, Third Party Advisory, Issue Tracking

27 Jan 2025, 18:15

Type	Values Removed	Values Added
References		() https://mebroccoli.blogspot.com/2025/01/sql-injection-vulnerability-in-senayan.html -

22 Jan 2025, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-01-22 15:15

Updated : 2025-06-18 16:01

NVD link : CVE-2025-22980

Mitre link : CVE-2025-22980

JSON object : View

Products Affected

slims

senayan_library_management_system_bulian

CWE

No CWE.

JSON object

Attach tags to CVE-2025-22980

Attach tags to `CVE-2025-22980`