VYPR
Unrated severityNVD Advisory· Published Dec 21, 2023· Updated Aug 2, 2024

Railway Reservation System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

CVE-2023-48685

Description

Railway Reservation System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'psd' parameter of the login.php resource does not validate the characters received and they are sent unfiltered to the database.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.