71 matches found
CVE-2022-35155
Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the searchdata parameter...
CVE-2022-35156
Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php...
EUVD-2022-33438
Malicious code in bioql PyPI...
EUVD-2025-9579
Malicious code in bioql PyPI...
EUVD-2022-38049
Malicious code in bioql PyPI...
EUVD-2022-38050
Malicious code in bioql PyPI...
EUVD-2021-31158
Malicious code in bioql PyPI...
EUVD-2025-28711
Malicious code in bioql PyPI...
EUVD-2021-31160
Malicious code in bioql PyPI...
EUVD-2022-38917
Malicious code in bioql PyPI...
CVE-2025-6288
A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross...
CVE-2025-6288
A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross...
CVE-2025-6288
A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross...
CVE-2025-6288 PHPGurukul Bus Pass Management System Profile Page admin-profile.php cross site scripting
A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross...
PT-2025-26253 · Unknown · Phpgurukul Bus Pass Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Bus Pass Management System version 1.0 Description: A problematic issue has been found in the Profile Page component, specifically in the /admin/admin-profile.php file. The manipulation of the profile name argument leads to cross...
CVE-2024-44798
phpgurukul Bus Pass Management System 1.0 is vulnerable to Cross-site scripting XSS in /admin/pass-bwdates-reports-details.php via fromdate and todate parameters...
CVE-2022-29008
An insecure direct object reference IDOR vulnerability in the viewid parameter of Bus Pass Management System v1.0 allows attackers to access sensitive information...
CVE-2022-36198
Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and...
CVE-2021-44315
In Bus Pass Management System v1.0, Directory Listing/Browsing is enabled on the web server which allows an attacker to view the sensitive files of the application, for example: Any file which contains sensitive information of the user or server...
📄 Bus Pass Management System 1.0 SQL Injection
Bus Pass Management System version 1.0 suffers from a remote SQL injection vulnerability. Exploit Title: Bus Pass Management System v1.0 - Unauthenticated Union Based SQLi Manuel Exploit Date: 2025-04-07 Exploit Author: Mehmet Can Kadıoğlu a.k.a mao7un Vendor:...