8 matches found
CVE-2018-5076
Online Ticket Booking has XSS via the admin/newsedit.php newstitle parameter...
Online Course Registration /news.php File SQL Injection Vulnerability
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter newstitle in the file /news.php. An attacker can exploit this...
CVE-2025-4794
A vulnerability was found in PHPGurukul Online Course Registration 3.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /news.php. The manipulation of the argument newstitle leads to sql injection. The attack can be launched remotely. The...
PHPGurukul Online Course Registration 注入漏洞
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter newstitle in the file /news.php. An attacker can exploit this...
Online Ticket Booking Cross-Site Scripting Vulnerability (CNVD-2018-01215)
Advanced Real Estate Script is a ready-made real estate website script.Online Ticket Booking is one of the online booking systems. A cross-site scripting vulnerability exists in Online Ticket Booking in Advanced Real Estate Script. The vulnerability can be exploited to conduct cross-site scriptin...
CVE-2018-5076
Online Ticket Booking has XSS via the admin/newsedit.php newstitle parameter...
CVE-2018-5076
Online Ticket Booking has XSS via the admin/newsedit.php newstitle parameter...
CVE-2018-5076
CVE-2018-5076 is a Cross-Site Scripting (XSS) vulnerability affecting the Online Ticket Booking component of the Advanced Real Estate Script family. Multiple sources (NVD, Red Hat advisory, CNVD) describe an XSS flaw that can be exploited via the admin/newsedit.php news title parameter, enabling ...