2 matches found
CVE-2023-48685 Railway Reservation System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Railway Reservation System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'psd' parameter of the login.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-48685
CVE-2023-48685 affects Railway Reservation System v1.0. The vulnerability is an unauthenticated SQL Injection in the login.php resource, triggered by the unvalidated psd parameter sent to the database. The issue is confirmed across multiple sources (NVD/NVD-Centric records and third-party advisor...