2 matches found
CVE-2022-33049
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manageuser...
CVE-2022-33049
CVE-2022-33049 affects Online Railway Reservation System v1.0, with a SQL injection vulnerability exploitable via the id parameter in /orrs/admin/?page=user/manage_user. Root cause: insufficient input validation allowing SQL injection. Impact details are not quantified beyond the generic SQLi ris...