Lucene search
K

10 matches found

exploitpack
exploitpack
added 2016/01/05 12:0 a.m.16 views

Online Airline Booking System - Multiple Vulnerabilities

Online Airline Booking System - Multiple Vulnerabilities Exploit Title : Online Airline Booking System multiple vulnerabilities Author : WICS Date : 05/1/2016 Software Link : http://sourceforge.net/projects/oabs/ Affected Version: All Overview: The Online Airline Booking System is designed to be ...

7.6AI score
Exploits0
0day.today
0day.today
added 2016/01/05 12:0 a.m.18 views

Online Airline Booking System - Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title : Online Airline Booking System multiple vulnerabilities Author : WICS Date : 05/1/2016 Software Link : http://sourceforge.net/projects/oabs/ Affected Version: All Overview: The Online Airline Booking System is designed to be an...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2016/01/05 12:0 a.m.17 views

Online Airline Booking System - Multiple Vulnerabilities

Exploit Title : Online Airline Booking System multiple vulnerabilities Author : WICS Date : 05/1/2016 Software Link : http://sourceforge.net/projects/oabs/ Affected Version: All Overview: The Online Airline Booking System is designed to be an all in one solution for an airline wishing to speed up...

7.4AI score
Exploits0
CNVD
CNVD
added 2015/10/10 12:0 a.m.5 views

Vulnerability in Datalex airline booking software

Datalex airline booking software is a suite of software from Datalex Ireland that automatically connects to airline bookings. A security vulnerability exists in Datalex airline booking software updated prior to date 2015-09-03. A remote attacker can exploit the vulnerability to read or access...

7.5CVSS6.9AI score0.01516EPSS
Exploits0References1
NVD
NVD
added 2015/10/02 2:59 a.m.24 views

CVE-2015-2858

Datalex airline booking software before 2015-09-03 allows remote attackers to read or write to arbitrary user data via a modified profileId parameter to 1 ValidateFormAction.do or 2 ProfileConfirmEditAddressAction.do...

7.5CVSS6.7AI score0.01516EPSS
Exploits0References1
Prion
Prion
added 2015/10/02 2:59 a.m.19 views

Code injection

Datalex airline booking software before 2015-09-03 allows remote attackers to read or write to arbitrary user data via a modified profileId parameter to 1 ValidateFormAction.do or 2 ProfileConfirmEditAddressAction.do...

7.5CVSS7.2AI score0.01516EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/10/02 1:0 a.m.22 views

CVE-2015-2858

Datalex airline booking software before 2015-09-03 allows remote attackers to read or write to arbitrary user data via a modified profileId parameter to 1 ValidateFormAction.do or 2 ProfileConfirmEditAddressAction.do...

6.7AI score0.01516EPSS
Exploits0References1
CVE
CVE
added 2015/10/02 1:0 a.m.49 views

CVE-2015-2858

The CVE-2015-2858 issue affects the Datalex airline booking software (pre-2015-09-03) and stems from an authorization-check bypass in how the application processes the profileId parameter. By modifying profileId in POST requests to ValidateFormAction.do or ProfileConfirmEditAddressAction.do, an a...

7.5CVSS6.9AI score0.01516EPSS
Exploits0References1Affected Software1
CERT
CERT
added 2015/09/30 12:0 a.m.165 views

Datalex airline booking software allowed authorization bypass for arbitrary users

Overview Datalex provides a suite of software offerings for the airline industry which supports a customizable flight browsing, booking, payment, and analytics. The Datalex airline booking software contained an error in its error handling routines which allows authorization bypass and loss of...

7.5CVSS6.7AI score0.01516EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2015/01/05 12:0 a.m.27 views

Online Airline Booking System Authentication Bypass

Exploit Title : Online Airline Booking System multiple vulnerabilities Author : WICS Date : 05/1/2016 Software Link : http://sourceforge.net/projects/oabs/ Affected Version: All Overview: The Online Airline Booking System is designed to be an all in one solution for an airline wishing to speed up...

7.4AI score
Exploits0
Rows per page
Query Builder