38 matches found
EUVD-2020-17960
Malware in sbrugna...
EUVD-2023-49341
Malicious code in bioql PyPI...
EUVD-2023-49337
Malicious code in bioql PyPI...
EUVD-2023-49340
Malicious code in bioql PyPI...
EUVD-2023-49334
Malicious code in bioql PyPI...
CVE-2020-25273
In SourceCodester Online Bus Booking System 1.0, there is Authentication bypass on the Admin Login screen in admin.php via username or password SQL injection...
CVE-2020-25272
In SourceCodester Online Bus Booking System 1.0, there is XSS through the name parameter in booknow.php...
CVE-2023-45019
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'category' parameter of the category.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45018
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the includes/login.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45018
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the includes/login.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45019
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'category' parameter of the category.php resource does not validate the characters received and they are sent unfiltered to the database...
Sql injection
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'date' parameter of the businfo.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45019
CVE-2023-45019 affects Online Bus Booking System v1.0 and is tied to unauthenticated SQL Injection in the category parameter of category.php. The vulnerability arises because input is not properly validated or filtered before being sent to the database, enabling potential attackers to manipulate ...
CVE-2023-45019 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'category' parameter of the category.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45019 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'category' parameter of the category.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45018 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the includes/login.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45018 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the includes/login.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45018
CVE-2023-45018 affects Online Bus Booking System v1.0. The vulnerability is an unauthenticated SQL injection in the username parameter of includes/login.php due to unfiltered input. Root cause: lack of input validation leads to SQL injection; impact is high for confidentiality, integrity, and ava...
CVE-2023-45017
The connected PT-2023-29358 entry identifies CVE-2023-45017 as an unauthenticated SQL Injection in Online Bus Booking System v1.0, caused by lack of validation on the destination parameter in search.php. This allows unfiltered input to reach the database; impact could include data disclosure or m...
CVE-2023-45016
PT-Security document reports CVE-2023-45016 context linked to Online Bus Booking System. Affected software: Online Bus Booking System version 1.0. Vulnerability: multiple unauthenticated SQL Injection flaws where the value of the source parameter in search.php is not validated and is passed unfil...