Bus Pass Management System admin-profile.php file cross-site scripting vulnerability

Bus Pass Management System is a bus pass management system. Bus Pass Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the profile name parameter in the file /admin/admin-profile.php, which can...

Bus Pass Management System view-pass-detail.php File SQL Injection Vulnerability

Bus Pass Management System is a bus pass management system. Bus Pass Management System suffers from a SQL injection vulnerability that originates from a missing validation of an externally entered SQL statement in the viewid parameter of the view-pass-detail.php file. An attacker can exploit this...

CVE-2025-3146

A vulnerability, which was classified as critical, was found in PHPGurukul Bus Pass Management System 1.0. This affects an unknown part of the file /view-pass-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to initiate the attack remotely. The exploit ha...

CVE-2025-3146 PHPGurukul Bus Pass Management System view-pass-detail.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Bus Pass Management System 1.0. This affects an unknown part of the file /view-pass-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to initiate the attack remotely. The exploit ha...

Bus Pass Management System pass-bwdates-reports-details.php file cross-site scripting vulnerability

Bus Pass Management System is a bus pass management system. Bus Pass Management System has a cross-site scripting vulnerability, the vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the fromdate and todate parameters in the...

CVE-2024-44798

phpgurukul Bus Pass Management System 1.0 is vulnerable to Cross-site scripting XSS in /admin/pass-bwdates-reports-details.php via fromdate and todate parameters...

Bus Pass Management System SQL注入漏洞

Bus Pass Management System is a bus pass management system. Bus Pass Management System v1.0 has a SQL injection vulnerability, which stems from an SQL injection vulnerability found to be contained in the searchdata parameter...

CVE-2022-36198

Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and...

CVE-2022-36198

Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and...

PT-2022-23255 · Unknown · Bus Pass Management System

Name of the Vulnerable Software and Affected Versions: Bus Pass Management System version 1.0 Description: Multiple SQL injections were detected in the Bus Pass Management System. The issue affects several API endpoints, including "buspassms/admin/view-enquiry.php",...

Bus Pass Management System SQL注入漏洞

Bus Pass Management System is a bus pass management system. A security vulnerability exists in Bus Pass Management System version 1.0, which is caused by multiple SQL injections...

PT-2022-19362 · Unknown · Bus Pass Management System

Name of the Vulnerable Software and Affected Versions: Bus Pass Management System version 1.0 Description: An insecure direct object reference IDOR vulnerability in the viewid parameter allows attackers to access sensitive information. Recommendations: For Bus Pass Management System version 1.0,...

CVE-2021-44315

In Bus Pass Management System v1.0, Directory Listing/Browsing is enabled on the web server which allows an attacker to view the sensitive files of the application, for example: Any file which contains sensitive information of the user or server...

Bus Pass Management System 跨站脚本漏洞

Bus Pass Management System is a bus pass management system. v1.0 of Bus Pass Management System is vulnerable to a cross-site scripting vulnerability that stems from the lack of data validation filtering of user-supplied data and output in the parameters pagedes and About Us. An attacker could...

Bus Pass Management System 安全漏洞

Bus Pass Management System is a bus pass management system. v1.0 of Bus Pass Management System is vulnerable to information disclosure, which stems from a configuration error in the network system or product during operation. The vulnerability can be exploited by an attacker to view the applicati...

PT-2021-24080 · Unknown · Bus Pass Management System

Name of the Vulnerable Software and Affected Versions: Bus Pass Management System version 1.0 Description: The issue is related to a Stored Cross-site scripting vulnerability. Parameters pagedes and About Us are affected. Recommendations: For Bus Pass Management System version 1.0, consider...