Online Railway Reservation System Security Vulnerabilities and Issues — Online Railway Reservation System CVE List

Lucene search

Online Railway Reservation System ProjectOnline Railway Reservation System

11 matches found

CVE•added 2022/06/29 5:15 p.m.•73 views

CVE-2022-33042

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/inquiries/view_details.php.

7.2CVSS7.2AI score0.0026EPSS

CVE•added 2022/06/21 2:15 p.m.•68 views

CVE-2022-33048

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/reservations/view_details.php.

7.2CVSS7.2AI score0.0026EPSS

CVE•added 2022/06/29 7:15 p.m.•61 views

CVE-2022-33057

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation.

7.2CVSS7.2AI score0.0026EPSS

CVE•added 2022/06/29 7:15 p.m.•56 views

CVE-2022-33061

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_service.

7.2CVSS7.2AI score0.0026EPSS

CVE•added 2022/06/29 7:15 p.m.•55 views

CVE-2022-33059

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_train.

7.2CVSS7.2AI score0.0026EPSS

CVE•added 2022/06/29 7:15 p.m.•55 views

CVE-2022-33060

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_schedule.

7.2CVSS7.2AI score0.00303EPSS

CVE•added 2022/06/21 2:15 p.m.•52 views

CVE-2022-33049

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manage_user.

7.2CVSS7.2AI score0.0026EPSS

CVE•added 2022/06/29 7:15 p.m.•49 views

CVE-2022-33058

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_message.

7.2CVSS7.2AI score0.0026EPSS

CVE•added 2022/06/21 2:15 p.m.•42 views

CVE-2022-33055

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/manage_train.php.

7.2CVSS7.2AI score0.0026EPSS

CVE•added 2024/08/18 7:15 p.m.•42 views

CVE-2024-7910

A vulnerability was found in CodeAstro Online Railway Reservation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/emp-profile-avatar.php of the component Profile Photo Update Handler. The manipulation leads to unrestricted upload. The a...

7.2CVSS4.8AI score0.00092EPSS

CVE•added 2022/06/21 2:15 p.m.•40 views

CVE-2022-33056

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/schedules/manage_schedule.php.

7.2CVSS7.2AI score0.0026EPSS