online-railway-reservation-system
by Oretnom23
CVEs (10)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-38758 | Hig | 0.49 | 7.5 | 0.02 | Aug 16, 2021 | Directory traversal vulnerability in Online Catering Reservation System 1.0 exists due to lack of validation in index.php. | ||
| CVE-2022-33061 | Hig | 0.47 | 7.2 | 0.01 | Jun 29, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_service. | ||
| CVE-2022-33060 | Hig | 0.47 | 7.2 | 0.01 | Jun 29, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_schedule. | ||
| CVE-2022-33058 | Hig | 0.47 | 7.2 | 0.01 | Jun 29, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_message. | ||
| CVE-2022-33057 | Hig | 0.47 | 7.2 | 0.01 | Jun 29, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation. | ||
| CVE-2022-33042 | Hig | 0.47 | 7.2 | 0.01 | Jun 29, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/inquiries/view_details.php. | ||
| CVE-2022-33056 | Hig | 0.47 | 7.2 | 0.01 | Jun 21, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/schedules/manage_schedule.php. | ||
| CVE-2022-33055 | Hig | 0.47 | 7.2 | 0.01 | Jun 21, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/manage_train.php. | ||
| CVE-2022-33049 | Hig | 0.47 | 7.2 | 0.01 | Jun 21, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manage_user. | ||
| CVE-2022-33048 | Hig | 0.47 | 7.2 | 0.01 | Jun 21, 2022 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/reservations/view_details.php. |
- risk 0.49cvss 7.5epss 0.02
Directory traversal vulnerability in Online Catering Reservation System 1.0 exists due to lack of validation in index.php.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_service.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_schedule.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_message.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/inquiries/view_details.php.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/schedules/manage_schedule.php.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/manage_train.php.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manage_user.
- risk 0.47cvss 7.2epss 0.01
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/reservations/view_details.php.