CVE-2026-1445
MEDIUMiJason-Liu Books_Manager <298ba736387ca37810466349af13a0fdf828e99c ...
Title source: llmDescription
A vulnerability was found in iJason-Liu Books_Manager up to 298ba736387ca37810466349af13a0fdf828e99c. This vulnerability affects unknown code of the file controllers/books_center/upload_bookCover.php. Performing a manipulation of the argument book_cover results in unrestricted upload. The attack may be initiated remotely. The exploit has been made public and could be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available.
References (4)
Scores
CVSS v3
4.7
EPSS
0.0005
EPSS Percentile
15.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-284
CWE-434
Status
published
Products (1)
iJason-Liu/Books_Manager
298ba736387ca37810466349af13a0fdf828e99c
Published
Jan 26, 2026
Tracked Since
Feb 18, 2026