CVE-2023-48689

Railway Reservation System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'byname' parameter of the train.php resource does not validate the characters received and they are sent unfiltered to the database...

Sql injection

Railway Reservation System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'byname' parameter of the train.php resource does not validate the characters received and they are sent unfiltered to the database...

PT-2023-30898 · Unknown · Railway Reservation System

Name of the Vulnerable Software and Affected Versions: Railway Reservation System version 1.0 Description: The issue concerns multiple Unauthenticated SQL Injection vulnerabilities. The byname parameter of the "train.php" resource does not validate the characters received, and they are sent...

Projectworlds Railway Reservation System SQL Injection Vulnerability

Projectworlds Railway Reservation System is a railroad reservation system from Projectworlds India. A SQL injection vulnerability exists in Projectworlds Railway Reservation System v1.0, which stems from the "byname" parameter of train.php that does not validate received characters and is sent to...