Lucene search
K

140 matches found

Positive Technologies
Positive Technologies
added 2024/08/18 12:0 a.m.4 views

PT-2024-38679 · Unknown · Codeastro Online Railway Reservation System

Name of the Vulnerable Software and Affected Versions: CodeAstro Online Railway Reservation System version 1.0 Description: A vulnerability was found in the system, affecting unknown code of the file /admin/assets/. The manipulation leads to exposure of information through directory listing. The...

6.9CVSS5.7AI score0.00796EPSS
Exploits1References9
NVD
NVD
added 2024/08/15 4:15 a.m.35 views

CVE-2024-7815

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-update-employee.php of the component Update Employee Page. The manipulation of the argument empfname...

5.1CVSS0.01128EPSS
Exploits3References4
Vulnrichment
Vulnrichment
added 2024/08/15 3:31 a.m.17 views

CVE-2024-7814 CodeAstro Online Railway Reservation System Add Employee Page admin-add-employee.php cross site scripting

A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the component Add Employee Page. The manipulation of the argument empfname /emplname /empnatidno/empaddr...

5.1CVSS6.4AI score0.00395EPSS
Exploits1References3
CVE
CVE
added 2024/08/15 3:31 a.m.60 views

CVE-2024-7814

CVE-2024-7814 affects CodeAstro Online Railway Reservation System 1.0, with a Cross-Site Scripting vulnerability in /admin/admin-add-employee.php (unknown function). The issue arises from manipulating parameters emp_fname, emp_lname, emp_nat_idno, and emp_addr, enabling remote XSS as described in...

5.1CVSS3.4AI score0.00395EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/08/15 3:31 a.m.36 views

CVE-2024-7814 CodeAstro Online Railway Reservation System Add Employee Page admin-add-employee.php cross site scripting

A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the component Add Employee Page. The manipulation of the argument empfname /emplname /empnatidno/empaddr...

5.1CVSS0.00395EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/08/15 12:0 a.m.10 views

PT-2024-38601 · Unknown · Codeastro Online Railway Reservation System

Name of the Vulnerable Software and Affected Versions: CodeAstro Online Railway Reservation System version 1.0 Description: A problematic issue was found in the CodeAstro Online Railway Reservation System, affecting an unknown function of the file /admin/admin-add-employee.php of the component Ad...

5.1CVSS4AI score0.00395EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/08/15 12:0 a.m.5 views

CodeAstro Online Railway Reservation System 跨站脚本漏洞

CodeAstro Online Railway Reservation System is a full-featured CodeAstro project based on the Online Railway Reservation System project, which uses PHP language and MySQL database. A cross-site scripting vulnerability exists in CodeAstro Online Railway Reservation System version 1.0, which stems...

5.1CVSS3.6AI score0.01128EPSS
Exploits3References7
OSV
OSV
added 2024/01/22 5:15 p.m.4 views

CVE-2024-0782

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file pass-profile.php. The manipulation of the argument First Name/Last Name/User Name leads to cross site scripting. The attack can be...

6.1CVSS3.8AI score0.00571EPSS
Exploits1References3
Prion
Prion
added 2024/01/22 5:15 p.m.17 views

Cross site scripting

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file pass-profile.php. The manipulation of the argument First Name/Last Name/User Name leads to cross site scripting. The attack can be...

4CVSS6.6AI score0.00571EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/22 4:31 p.m.11 views

CVE-2024-0782 CodeAstro Online Railway Reservation System pass-profile.php cross site scripting

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file pass-profile.php. The manipulation of the argument First Name/Last Name/User Name leads to cross site scripting. The attack can be...

4CVSS6.6AI score0.00571EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/22 4:31 p.m.40 views

CVE-2024-0782 CodeAstro Online Railway Reservation System pass-profile.php cross site scripting

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file pass-profile.php. The manipulation of the argument First Name/Last Name/User Name leads to cross site scripting. The attack can be...

4CVSS6.3AI score0.00571EPSS
Exploits1References3
CVE
CVE
added 2024/01/22 4:31 p.m.35 views

CVE-2024-0782

The CVE-2024-0782 entry affects CodeAstro Online Railway Reservation System 1.0, targeting pass-profile.php. The flaw arises from manipulation of the First Name/Last Name/User Name parameters, enabling cross-site scripting (XSS). Exploitation is described as remote with publicly disclosed details...

6.1CVSS6AI score0.00571EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/22 12:0 a.m.9 views

PT-2024-15815 · Unknown · Codeastro Online Railway Reservation System

Name of the Vulnerable Software and Affected Versions: CodeAstro Online Railway Reservation System version 1.0 Description: A vulnerability has been found in the CodeAstro Online Railway Reservation System, classified as problematic. This issue affects unknown code of the file pass-profile.php. T...

6.1CVSS4.5AI score0.00571EPSS
Exploits1References6
Prion
Prion
added 2024/01/11 8:15 p.m.20 views

Cross site scripting

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file dishes.php. The manipulation of the argument resid leads to cross site scripting. The attack may be launched remotely. The...

4CVSS6.4AI score0.00533EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/11 7:31 p.m.11 views

CVE-2024-0423 CodeAstro Online Food Ordering System dishes.php cross site scripting

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file dishes.php. The manipulation of the argument resid leads to cross site scripting. The attack may be launched remotely. The...

4CVSS6.2AI score0.00533EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/11 7:31 p.m.38 views

CVE-2024-0423 CodeAstro Online Food Ordering System dishes.php cross site scripting

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file dishes.php. The manipulation of the argument resid leads to cross site scripting. The attack may be launched remotely. The...

4CVSS5.4AI score0.00533EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/01/11 12:0 a.m.9 views

PT-2024-15546 · Unknown · Codeastro Online Food Ordering System

Name of the Vulnerable Software and Affected Versions: CodeAstro Online Food Ordering System version 1.0 Description: A problem was found in the CodeAstro Online Food Ordering System. It affects some unknown functionality of the file dishes.php. The manipulation of the res id argument leads to...

5.4CVSS6.7AI score0.00533EPSS
Exploits1References6
NVD
NVD
added 2024/01/05 7:15 p.m.26 views

CVE-2024-0247

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

9.8CVSS8.2AI score0.00779EPSS
Exploits1References3
OSV
OSV
added 2024/01/05 7:15 p.m.3 views

CVE-2024-0247

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

9.8CVSS5.7AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/01/05 7:0 p.m.15 views

CVE-2024-0247 CodeAstro Online Food Ordering System Admin Panel sql injection

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

7.5CVSS7.5AI score0.00779EPSS
Exploits1References3
Rows per page
Query Builder