VYPR
Unrated severityNVD Advisory· Published Dec 21, 2023· Updated Aug 2, 2024

Railway Reservation System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

CVE-2023-48687

Description

Railway Reservation System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'from' parameter of the reservation.php resource does not validate the characters received and they are sent unfiltered to the database.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.