Security Advisory

CVE-2025-13278

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-17 12:02:05
Last updated 2026-02-24 06:32:12
Assigner VulDB
State PUBLISHED

Description

A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrowed_book_search.php. Such manipulation of the argument datefrom/dateto leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.