VYPR
Unrated severityNVD Advisory· Published Nov 2, 2023· Updated Sep 5, 2024

Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

CVE-2023-45018

Description

Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the includes/login.php resource does not validate the characters received and they are sent unfiltered to the database.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.