Lucene search
K

34 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:31 a.m.8 views

CVE-2024-42762

A Stored Cross Site Scripting XSS vulnerability was found in "/history.php" in Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the Name, Phone, and Email parameter fields...

5.4CVSS6.4AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:31 a.m.8 views

CVE-2024-42761

A Stored Cross Site Scripting XSS vulnerability was found in "/adminschedule.php" in Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via scheduleDurationPHP parameter...

6.1CVSS6.3AI score0.00444EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.9 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

5.4CVSS6.9AI score0.00296EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.9 views

CVE-2024-42763

A Reflected Cross Site Scripting XSS vulnerability was found in the "/schedule.php" page of the Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code via the "bookingdate" parameter...

5.4CVSS6.5AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:23 a.m.6 views

CVE-2024-42765

A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters...

9.8CVSS8.9AI score0.00694EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:23 a.m.10 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

9.4CVSS7AI score0.00299EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.5 views

Kashipara Bus Ticket Reservation System Access Control Error Vulnerability

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. An access control error vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which can be exploited by attackers to cause unauthorized operation...

5.4CVSS6.7AI score0.00296EPSS
Exploits0References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.8 views

Kashipara Bus Ticket Reservation System Cross-Site Scripting Vulnerability

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the Name, Phone, and Email...

5.4CVSS6.5AI score0.00415EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.7 views

Kashipara Bus Ticket Reservation System Cross-Site Request Forgery Vulnerability

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site request forgery vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from /deleteTicket.php not adequately verifying that the request comes from a trusted user, and can be...

9.4CVSS6.6AI score0.00299EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/29 12:0 a.m.11 views

Kashipara Bus Ticket Reservation System Cross-Site Scripting Vulnerability (CNVD-2024-38206)

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in /adminschedule.php, and can be...

6.1CVSS6.2AI score0.00444EPSS
Exploits1References1
NVD
NVD
added 2024/08/23 3:15 p.m.11 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

9.4CVSS0.00299EPSS
Exploits1References2
OSV
OSV
added 2024/08/23 3:15 p.m.4 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

5.4CVSS5.8AI score0.00296EPSS
Exploits0References2
OSV
OSV
added 2024/08/23 3:15 p.m.3 views

CVE-2024-42764

Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery CSRF via /deleteTicket.php...

9.4CVSS5.8AI score0.00299EPSS
Exploits1References2
NVD
NVD
added 2024/08/23 3:15 p.m.13 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

5.4CVSS0.00296EPSS
Exploits0References2
NVD
NVD
added 2024/08/23 3:15 p.m.10 views

CVE-2024-42765

A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters...

9.8CVSS0.00694EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/23 12:0 a.m.22 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

0.00296EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/23 12:0 a.m.12 views

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

6.9AI score0.00296EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/23 12:0 a.m.4 views

PT-2024-30136 · Unknown · Kashipara Bus Ticket Reservation System

Name of the Vulnerable Software and Affected Versions: Kashipara Bus Ticket Reservation System version 1.0 0 Description: The issue concerns Incorrect Access Control, allowing unauthorized actions via the "/deleteTicket.php" API endpoint. This enables unauthorized booking deletions due to broken...

5.4CVSS7.1AI score0.00296EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2024/08/23 12:0 a.m.8 views

PT-2024-30135 · Unknown · Kashipara Bus Ticket Reservation System

Name of the Vulnerable Software and Affected Versions: Kashipara Bus Ticket Reservation System version 1.0 Description: A SQL injection vulnerability in the "/login.php" page of the Kashipara Bus Ticket Reservation System allows remote attackers to execute arbitrary SQL commands and bypass login...

9.8CVSS9AI score0.00694EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/08/23 12:0 a.m.4 views

Kashipara Bus Ticket Reservation System 安全漏洞

Kashipara Bus Ticket Reservation System is a bus reservation system from Kashipara. A SQL injection vulnerability exists in Kashipara Bus Ticket Reservation System v1.0, which stems from the application's lack of validation of externally-entered SQL statements, and can be exploited by a remote...

9.8CVSS8.5AI score0.00694EPSS
Exploits1References3
Rows per page
Query Builder