2 matches found
CVE-2023-45015
CVE-2023-45015 relates to the Online Bus Booking System v1.0, which is vulnerable to multiple unauthenticated SQL injection flaws. The root cause, as stated across sources, is that the date parameter in the bus_info.php resource is not properly validated or filtered before being sent to the datab...
CVE-2023-45015 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'date' parameter of the businfo.php resource does not validate the characters received and they are sent unfiltered to the database...