Lucene search
K

34 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:31 a.m.7 views

CVE-2024-42762

A Stored Cross Site Scripting XSS vulnerability was found in "/history.php" in Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the Name, Phone, and Email parameter fields...

5.4CVSS6.4AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:31 a.m.8 views

CVE-2024-42761

A Stored Cross Site Scripting XSS vulnerability was found in "/adminschedule.php" in Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via scheduleDurationPHP parameter...

6.1CVSS6.3AI score0.00444EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.8 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

5.4CVSS6.9AI score0.00296EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.8 views

CVE-2024-42763

A Reflected Cross Site Scripting XSS vulnerability was found in the "/schedule.php" page of the Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the "bookingdate" parameter...

5.4CVSS6.5AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:23 a.m.5 views

CVE-2024-42765

A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters...

9.8CVSS8.9AI score0.00694EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:23 a.m.9 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

9.4CVSS7AI score0.00299EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.5 views

Kashipara Bus Ticket Reservation System Access Control Error Vulnerability

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. An access control error vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which can be exploited by attackers to cause unauthorized operation...

5.4CVSS6.7AI score0.00296EPSS
Exploits0References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.7 views

Kashipara Bus Ticket Reservation System Cross-Site Request Forgery Vulnerability

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site request forgery vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from /deleteTicket.php not adequately verifying that the request comes from a trusted user, and can be...

9.4CVSS6.6AI score0.00299EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.9 views

Kashipara Bus Ticket Reservation System Cross-Site Scripting Vulnerability (CNVD-2024-38206)

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in /adminschedule.php, and can be...

6.1CVSS6.2AI score0.00444EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.8 views

Kashipara Bus Ticket Reservation System Cross-Site Scripting Vulnerability

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the Name, Phone, and Email...

5.4CVSS6.5AI score0.00415EPSS
Exploits1References1
NVD
NVD
added 2024/08/23 3:15 p.m.11 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

9.4CVSS0.00299EPSS
Exploits1References2
OSV
OSV
added 2024/08/23 3:15 p.m.3 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

9.4CVSS5.8AI score0.00299EPSS
Exploits1References2
NVD
NVD
added 2024/08/23 3:15 p.m.8 views

CVE-2024-42765

A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters...

9.8CVSS0.00694EPSS
Exploits1References2
NVD
NVD
added 2024/08/23 3:15 p.m.10 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

5.4CVSS0.00296EPSS
Exploits0References2
OSV
OSV
added 2024/08/23 3:15 p.m.3 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

5.4CVSS5.8AI score0.00296EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/23 12:0 a.m.3 views

Kashipara Bus Ticket Reservation System 安全漏洞

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A SQL injection vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the application's lack of validation of externally-entered SQL statements, and can be exploited by a remote...

9.8CVSS8.5AI score0.00694EPSS
Exploits1References3
CVE
CVE
added 2024/08/23 12:0 a.m.48 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0.0 is reported vulnerable to Incorrect Access Control via the /deleteTicket.php endpoint, enabling unauthorized actions such as deleting bookings. The root cause is broken access control; the impact is access/modify/admin actions outside the intended pe...

5.4CVSS7.1AI score0.00296EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/23 12:0 a.m.17 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

0.00299EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/08/23 12:0 a.m.3 views

Kashipara Bus Ticket Reservation System 安全漏洞

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site request forgery vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from /deleteTicket.php not adequately verifying that the request comes from a trusted user, and can be...

9.4CVSS6.8AI score0.00299EPSS
Exploits1References3
CVE
CVE
added 2024/08/23 12:0 a.m.54 views

CVE-2024-42764

CVE-2024-42764 affects Kashipara Bus Ticket Reservation System v1.0. The public details show a CSRF vulnerability in /deleteTicket.php that allows forging requests without user interaction, aligning with a network-based attack vector. The CVE metrics describe low confidentiality impact but high i...

9.4CVSS7.3AI score0.00299EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder