Park Ticketing Management System Security Vulnerabilities and Issues — Park Ticketing Management System CVE List

Lucene search

PhpgurukulPark Ticketing Management System

8 matches found

CVE•added 2025/04/30 2:15 p.m.•46 views

CVE-2025-45015

A Cross-Site Scripting (XSS) vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. The vulnerability allows remote attackers to inject arbitrary JavaScript code via the fromdate and todate parameters.

6.1CVSS6AI score0.00069EPSS

CVE•added 2025/04/30 2:15 p.m.•46 views

CVE-2025-45017

A SQL injection vulnerability was discovered in edit-ticket.php of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the tprice POST request parameter.

9.8CVSS8.8AI score0.00298EPSS

CVE•added 2025/04/30 2:15 p.m.•45 views

CVE-2025-45019

A SQL injection vulnerability was discovered in /add-foreigners-ticket.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the cprice POST request parameter.

9.8CVSS8.8AI score0.00064EPSS

CVE•added 2025/04/30 1:15 p.m.•44 views

CVE-2025-45020

A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the todate parameter in a POST request.

7.2CVSS8.3AI score0.00138EPSS

CVE•added 2025/04/30 2:15 p.m.•43 views

CVE-2025-45018

A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the todate parameter.

9.8CVSS8.8AI score0.00151EPSS

CVE•added 2025/04/30 2:15 p.m.•40 views

CVE-2025-45009

A HTML Injection vulnerability was discovered in the normal-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata parameter.

5.3CVSS8.1AI score0.0009EPSS

CVE•added 2025/04/30 2:15 p.m.•40 views

CVE-2025-45010

A HTML Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the fromdate and todate POST request parameters.

5.3CVSS7.8AI score0.0009EPSS

CVE•added 2025/04/30 2:15 p.m.•39 views

CVE-2025-45011

A HTML Injection vulnerability was discovered in the foreigner-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata POST request parameter.

5.3CVSS7.8AI score0.0009EPSS