Online Movie Ticket Booking System Security Vulnerabilities - 2023

CVE-2023-44163

The 'search' parameter of the process_search.php resource does not validate the characters received and they are sent unfiltered to the database.

CVE-2023-44164

The 'Email' parameter of the process_login.php resource does not validate the characters received and they are sent unfiltered to the database.

CVE-2023-44166

The 'age' parameter of the process_registration.php resource does not validate the characters received and they are sent unfiltered to the database.

CVE-2023-44173

Online Movie Ticket Booking System v1.0 is vulnerable to an authenticated Reflected Cross-Site Scripting vulnerability.

CVE-2023-44174

Online Movie Ticket Booking System v1.0 is vulnerable to an authenticated Stored Cross-Site Scripting vulnerability.