Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-23054

Malware in sbrugna...

9.8CVSS9.4AI score0.02025EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 10:31 a.m.7 views

CVE-2024-42762

A Stored Cross Site Scripting XSS vulnerability was found in "/history.php" in Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the Name, Phone, and Email parameter fields...

5.4CVSS6.4AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:31 a.m.8 views

CVE-2024-42761

A Stored Cross Site Scripting XSS vulnerability was found in "/adminschedule.php" in Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via scheduleDurationPHP parameter...

6.1CVSS6.3AI score0.00444EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.8 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

5.4CVSS6.9AI score0.00296EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.8 views

CVE-2024-42763

A Reflected Cross Site Scripting XSS vulnerability was found in the "/schedule.php" page of the Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the "bookingdate" parameter...

5.4CVSS6.5AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:23 a.m.5 views

CVE-2024-42765

A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters...

9.8CVSS8.9AI score0.00694EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:31 p.m.9 views

CVE-2020-35378

SQL Injection in the login page in Online Bus Ticket Reservation 1.0 allows attackers to execute arbitrary SQL commands and bypass authentication via the username and password fields...

9.8CVSS9.2AI score0.02025EPSS
Exploits1
CNVD
CNVD
added 2024/08/29 12:0 a.m.9 views

Kashipara Bus Ticket Reservation System Cross-Site Scripting Vulnerability (CNVD-2024-38206)

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in /adminschedule.php, and can be...

6.1CVSS6.2AI score0.00444EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.7 views

Kashipara Bus Ticket Reservation System Cross-Site Scripting Vulnerability (CNVD-2024-38207)

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the bookingdate parameter of...

5.4CVSS6.5AI score0.00415EPSS
Exploits1References1
OSV
OSV
added 2024/08/23 3:15 p.m.3 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

5.4CVSS5.8AI score0.00296EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/23 12:0 a.m.15 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

7AI score0.00299EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/23 12:0 a.m.16 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

0.00299EPSS
Exploits1References2
CVE
CVE
added 2024/08/23 12:0 a.m.55 views

CVE-2024-42765

CVE-2024-42765 describes a SQL injection in Kashipara Bus Ticket Reservation System v1.0, triggered on the "/login.php" page via the email or password parameters due to lack of input validation. Exploitation permits remote attackers to execute arbitrary SQL and bypass login, potentially gaining u...

9.8CVSS8.9AI score0.00694EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/08/23 12:0 a.m.14 views

CVE-2024-42765

A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters...

0.00694EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/23 12:0 a.m.17 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

0.00296EPSS
Exploits0References2
NVD
NVD
added 2024/08/22 9:15 p.m.12 views

CVE-2024-42763

A Reflected Cross Site Scripting XSS vulnerability was found in the "/schedule.php" page of the Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the "bookingdate" parameter...

5.4CVSS0.00415EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/08/22 12:0 a.m.11 views

CVE-2024-42762

A Stored Cross Site Scripting XSS vulnerability was found in "/history.php" in Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the Name, Phone, and Email parameter fields...

6.3AI score0.00415EPSS
Exploits1References2
CVE
CVE
added 2024/08/22 12:0 a.m.63 views

CVE-2024-42763

CVE-2024-42763 : A reflected XSS in Kashipara Bus Ticket Reservation System v1.0, exploitable via the /schedule.php?bookingdate parameter. The root cause is insufficient filtering/escaping of user input for bookingdate, enabling arbitrary script execution. Documented by multiple sources (NVD, Red...

5.4CVSS6.7AI score0.00415EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2024/08/22 12:0 a.m.3 views

Kashipara Bus Ticket Reservation System 安全漏洞

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the bookingdate parameter of...

5.4CVSS6.5AI score0.00415EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/08/22 12:0 a.m.14 views

CVE-2024-42763

A Reflected Cross Site Scripting XSS vulnerability was found in the "/schedule.php" page of the Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the "bookingdate" parameter...

6.5AI score0.00415EPSS
Exploits1References2
Rows per page
Query Builder