Lucene search
K

5 matches found

Circl
Circl
added 2023/12/21 10:27 p.m.6 views

CVE-2023-48689

creationtimestamp| type| source ---|---|--- 2023-12-21 22:27:23+00:00| seen| https://t.me/ctinow/158002 2023-12-29 17:17:09+00:00| seen| https://t.me/ctinow/160605...

9.8CVSS8.7AI score0.00671EPSS
Exploits1References2
OSV
OSV
added 2023/12/21 9:15 p.m.5 views

CVE-2023-48689

Railway Reservation System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'byname' parameter of the train.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS5.8AI score0.00671EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/12/21 8:46 p.m.28 views

CVE-2023-48689 Railway Reservation System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

Railway Reservation System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'byname' parameter of the train.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS10AI score0.00671EPSS
Exploits1References2
CVE
CVE
added 2023/12/21 8:46 p.m.55 views

CVE-2023-48689

CVE-2023-48689 affects Railway Reservation System v1.0. The train.php resource exposes multiple unauthenticated SQL injection vulnerabilities via the byname parameter, which does not validate or filter characters before sending them to the database. The CVSS 3.1 vector indicates Network access, n...

9.8CVSS10AI score0.00671EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/21 8:46 p.m.7 views

CVE-2023-48689 Railway Reservation System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

Railway Reservation System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'byname' parameter of the train.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS8.1AI score0.00671EPSS
Exploits1References2
Rows per page
Query Builder