CVE-2021-45478
6.5 MEDIUMImproper Handling of Parameters vulnerability in Bordam Information Technologies Library Automation System allows Collect Data as Provide...
Published: 2023-03-02 · Last updated: 2026-05-18
Severity and scoring
- CVSS
- 6.5 MEDIUM
- Vector
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-233
Affected products
| Vendor | Product |
|---|---|
| yordam | library_automation_system |
Description
Improper Handling of Parameters vulnerability in Bordam Information Technologies Library Automation System allows Collect Data as Provided by Users. This issue affects Library Automation System: before 19.2.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2025-1301 — Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Yordam Informatics Library A... (6.1 MEDIUM)
- CVE-2023-4676 — Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yordam MedasPro allows Reflected XSS (6.1 MEDIUM)
- CVE-2021-45479 — Improper Neutralization of Input During Web Page Generation vulnerability in Yordam Information Technologies Library Automation System al... (5.4 MEDIUM)
- CVE-2021-45477 — Improper Handling of Parameters vulnerability in Bordam Information Technologies Library Automation System allows Collect Data as Provide... (6.5 MEDIUM)
- CVE-2021-45476 — Yordam Library Information Document Automation product before version 19.02 has an unauthenticated reflected XSS vulnerability (4.7 MEDIUM)
Same CWE
- CVE-2026-32998 — This vulnerability in Veeam Service Provider Console allows for remote code execution
- CVE-2021-45477 — Improper Handling of Parameters vulnerability in Bordam Information Technologies Library Automation System allows Collect Data as Provide... (6.5 MEDIUM)