CVE-2024-7815

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-update-employee.php of the component Update Employee Page. The manipulation of the argument empfname...

CVE-2024-7815

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-update-employee.php of the component Update Employee Page. The manipulation of the argument empfname...

CVE-2024-7814

A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the component Add Employee Page. The manipulation of the argument empfname /emplname /empnatidno/empaddr...

CVE-2024-7814

A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the component Add Employee Page. The manipulation of the argument empfname /emplname /empnatidno/empaddr...

CVE-2024-7815 CodeAstro Online Railway Reservation System Update Employee Page admin-update-employee.php cross site scripting

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-update-employee.php of the component Update Employee Page. The manipulation of the argument empfname...

CVE-2024-7815 CodeAstro Online Railway Reservation System Update Employee Page admin-update-employee.php cross site scripting

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-update-employee.php of the component Update Employee Page. The manipulation of the argument empfname...

CVE-2024-7815

CVE-2024-7815 : CodeAstro Online Railway Reservation System 1.0 has a cross-site scripting (XSS) vulnerability in the Update Employee Page. The issue stems from manipulating input parameters in /admin/admin-update-employee.php (emp_fname, emp_lname, emp_nat_idno, emp_addr), which can be exploited...

CVE-2024-7814 CodeAstro Online Railway Reservation System Add Employee Page admin-add-employee.php cross site scripting

A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the component Add Employee Page. The manipulation of the argument empfname /emplname /empnatidno/empaddr...

CVE-2024-7814

CVE-2024-7814 affects CodeAstro Online Railway Reservation System 1.0, with a Cross-Site Scripting vulnerability in /admin/admin-add-employee.php (unknown function). The issue arises from manipulating parameters emp_fname, emp_lname, emp_nat_idno, and emp_addr, enabling remote XSS as described in...

CVE-2024-7814 CodeAstro Online Railway Reservation System Add Employee Page admin-add-employee.php cross site scripting

A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the component Add Employee Page. The manipulation of the argument empfname /emplname /empnatidno/empaddr...

CodeAstro Online Railway Reservation System 跨站脚本漏洞

CodeAstro Online Railway Reservation System is a full-featured CodeAstro project based on the Online Railway Reservation System project, which uses PHP language and MySQL database. A cross-site scripting vulnerability exists in CodeAstro Online Railway Reservation System version 1.0, which stems...

PT-2024-38601 · Unknown · Codeastro Online Railway Reservation System

Name of the Vulnerable Software and Affected Versions: CodeAstro Online Railway Reservation System version 1.0 Description: A problematic issue was found in the CodeAstro Online Railway Reservation System, affecting an unknown function of the file /admin/admin-add-employee.php of the component Ad...

PT-2024-38602 · Unknown · Codeastro Online Railway Reservation System

Name of the Vulnerable Software and Affected Versions: CodeAstro Online Railway Reservation System version 1.0 Description: A problem has been found in the file /admin/admin-update-employee.php of the component Update Employee Page. The manipulation of the arguments emp fname, emp lname, emp nat...

CVE-2024-2351

A vulnerability classified as critical was found in CodeAstro Ecommerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file action.php of the component Search. The manipulation of the argument catid/brandid/keyword leads to sql injection. The attack can be launched...

CVE-2024-2351

A vulnerability classified as critical was found in CodeAstro Ecommerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file action.php of the component Search. The manipulation of the argument catid/brandid/keyword leads to sql injection. The attack can be launched...

Sql injection

A vulnerability classified as critical was found in CodeAstro Ecommerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file action.php of the component Search. The manipulation of the argument catid/brandid/keyword leads to sql injection. The attack can be launched...

CVE-2024-2351

CVE-2024-2351 affects CodeAstro Ecommerce Site 1.0. The flaw is in the action.php of the Search component, where manipulating the arguments cat_id, brand_id, or keyword leads to SQL injection. It can be exploited remotely, and the exploit has been disclosed publicly. Public sources identify the v...

CVE-2024-2351 CodeAstro Ecommerce Site Search action.php sql injection

A vulnerability classified as critical was found in CodeAstro Ecommerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file action.php of the component Search. The manipulation of the argument catid/brandid/keyword leads to sql injection. The attack can be launched...

CVE-2024-2351 CodeAstro Ecommerce Site Search action.php sql injection

A vulnerability classified as critical was found in CodeAstro Ecommerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file action.php of the component Search. The manipulation of the argument catid/brandid/keyword leads to sql injection. The attack can be launched...

CVE-2024-2333

A vulnerability classified as critical has been found in CodeAstro Membership Management System 1.0. Affected is an unknown function of the file /addmembers.php. The manipulation of the argument fullname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...