3 matches found
CVE-2022-33055
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/managetrain.php...
CVE-2022-33055
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/managetrain.php...
CVE-2022-33055
CVE-2022-33055 affects Online Railway Reservation System v1.0, with a SQL injection vulnerability in /orrs/admin/trains/manage_train.php via the id parameter. The root cause is a faulty id parameter that allows injected SQL statements. Documented impact is vulnerability to unauthorized data acces...