CVE-2025-13347 SourceCodester Train Station Ticketing System ajax.php sql injection

A flaw has been found in SourceCodester Train Station Ticketing System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=saveuser. Executing manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been published...

CVE-2025-13347 SourceCodester Train Station Ticketing System ajax.php sql injection

A flaw has been found in SourceCodester Train Station Ticketing System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=saveuser. Executing manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been published...

CVE-2025-13347

The CVE-2025-13347 affects SourceCodester Train Station Ticketing System 1.0. The vulnerability resides in the /ajax.php?action=save_user path where manipulating the Username parameter can trigger a SQL injection. Attacks can be launched remotely and exploits have been published, with multiple so...

CVE-2025-13345 SourceCodester Train Station Ticketing System ajax.php sql injection

A security vulnerability has been detected in SourceCodester Train Station Ticketing System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=saveticket. Such manipulation leads to sql injection. The attack can be launched remotely. The exploit has been...

PT-2025-47302

Name of the Vulnerable Software and Affected Versions SourceCodester Train Station Ticketing System version 1.0 Description A SQL injection weakness exists in the Train Station Ticketing System. This issue is related to the manipulation of the Username argument within the login functionality,...

SourceCodester Train Station Ticketing System SQL注入漏洞

SourceCodester Train Station Ticketing System is SourceCodester open source a train station ticketing system . A SQL injection vulnerability exists in SourceCodester Train Station Ticketing System version 1.0, which stems from incorrect manipulation of the parameter id/station in the file...

PT-2025-47303

Name of the Vulnerable Software and Affected Versions SourceCodester Train Station Ticketing System version 1.0 Description A security issue exists in SourceCodester Train Station Ticketing System 1.0. The issue involves a SQL injection point within the application, specifically through...

SourceCodester Train Station Ticketing System SQL注入漏洞

SourceCodester Train Station Ticketing System is SourceCodester open source a train station ticketing system. A SQL injection vulnerability exists in SourceCodester Train Station Ticketing System version 1.0, which stems from an incorrect manipulation of the parameter Username in the file...

CVE-2022-3774

A vulnerability was found in SourceCodester Train Scheduler App 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /trainschedulerapp/?action=delete. The manipulation of the argument id leads to improper control of resource identifiers. The attack may...

CVE-2023-3003

A vulnerability classified as critical was found in SourceCodester Train Station Ticketing System 1.0. Affected by this vulnerability is an unknown functionality of the file manageprices.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...

CVE-2022-3774

A vulnerability was found in SourceCodester Train Scheduler App 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /trainschedulerapp/?action=delete. The manipulation of the argument id leads to improper control of resource identifiers. The attack may...

CVE-2022-3774

CVE-2022-3774 affects SourceCodester Train Scheduler App 1.0. The vulnerability is an Insecure Direct Object Reference (IDOR) in the endpoint /train_scheduler_app/?action=delete, where the id parameter allows improper control of resource identifiers. Multiple sources (NVD, Red Hat, CVE listings, ...

CVE-2022-3774 SourceCodester Train Scheduler App resource injection

A vulnerability was found in SourceCodester Train Scheduler App 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /trainschedulerapp/?action=delete. The manipulation of the argument id leads to improper control of resource identifiers. The attack may...