VYPR
Unrated severityNVD Advisory· Published Nov 2, 2023· Updated Sep 4, 2024

Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

CVE-2023-45015

Description

Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'date' parameter of the bus_info.php resource does not validate the characters received and they are sent unfiltered to the database.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.