CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-33057
https://notcve.org/view.php?id=CVE-2022-33057
29 Jun 2022 — Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation. Se ha detectado que Online Railway Reservation System versión v1.0, contiene una vulnerabilidad de inyección SQL por medio del parámetro id en el archivo /classes/Master.php?f=delete_reservation • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/online-railway-reservation-system/SQLi-5.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-33042
https://notcve.org/view.php?id=CVE-2022-33042
29 Jun 2022 — Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/inquiries/view_details.php. Se ha detectado que Online Railway Reservation System versión v1.0, contiene una vulnerabilidad de inyección SQL por medio del parámetro id en el archivo /admin/inquiries/view_details.php • https://github.com/736335151/bug_report/blob/main/vendors/oretnom23/online-railway-reservation-system/SQLi-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-33056
https://notcve.org/view.php?id=CVE-2022-33056
21 Jun 2022 — Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/schedules/manage_schedule.php. Se ha detectado que Online Railway Reservation System versión v1.0, contiene una vulnerabilidad de inyección SQL por medio del parámetro id en el archivo /orrs/admin/schedules/manage_schedule.php • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/online-railway-reservation-system/SQLi-4.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-33055
https://notcve.org/view.php?id=CVE-2022-33055
21 Jun 2022 — Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/manage_train.php. Se ha detectado que Online Railway Reservation System versión v1.0, contiene una vulnerabilidad de inyección SQL por medio del parámetro id en el archivo /orrs/admin/trains/manage_train.php • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/online-railway-reservation-system/SQLi-3.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-33049
https://notcve.org/view.php?id=CVE-2022-33049
21 Jun 2022 — Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manage_user. Se ha detectado que Online Railway Reservation System versión v1.0, contiene una vulnerabilidad de inyección SQL por medio del parámetro id en el archivo /orrs/admin/?page=user/manage_user • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/online-railway-reservation-system/SQLi-2.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-33048
https://notcve.org/view.php?id=CVE-2022-33048
21 Jun 2022 — Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/reservations/view_details.php. Se ha detectado que Online Railway Reservation System versión v1.0, contiene una vulnerabilidad de inyección SQL por medio del parámetro id en el archivo /orrs/admin/reservations/view_details.php • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/online-railway-reservation-system/SQLi-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 1CVE-2021-41662
https://notcve.org/view.php?id=CVE-2021-41662
13 Jun 2022 — The South Gate Inn Online Reservation System v1.0 contains an SQL injection vulnerability that can be chained with a malicious PHP file upload, which is caused by improper file handling in the editImg function. This vulnerability leads to remote code execution. South Gate Inn Online Reservation System versión v1.0, contiene una vulnerabilidad de inyección SQL que puede encadenarse con una carga de archivos PHP maliciosa, causada por un manejo inapropiado de archivos en la función editImg. Esta vulnerabilida... • https://github.com/janikwehrli1/0dayHunt/blob/main/SouthGateInn_RCE.py • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30481
https://notcve.org/view.php?id=CVE-2022-30481
31 May 2022 — Food-order-and-table-reservation-system- 1.0 is vulnerable to SQL Injection in categorywise-menu.php via the catid parameters. Food-order-and-table-reservation-system- versión 1.0 es vulnerable a una Inyección SQL en el archivo categorywise-menu.php por medio de los parámetros catid • https://github.com/APTX-4879/CVE • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 2CVE-2022-28002 – Movie Seat Reservation System 1.0 File Disclosure / SQL Injection
https://notcve.org/view.php?id=CVE-2022-28002
08 Apr 2022 — Movie Seat Reservation v1 was discovered to contain an unauthenticated file disclosure vulnerability via /index.php?page=home. Se ha detectado que Movie Seat Reservation versión v1, contiene una vulnerabilidad de divulgación de archivos no autenticada por medio de /index.php?page=home Movie Seat Reservation System version 1.0 suffers from file disclosure and remote SQL injection vulnerabilities. • http://packetstormsecurity.com/files/166658/Movie-Seat-Reservation-System-1.0-File-Disclosure-SQL-Injection.html • CWE-552: Files or Directories Accessible to External Parties •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2022-28001 – Movie Seat Reservation System 1.0 File Disclosure / SQL Injection
https://notcve.org/view.php?id=CVE-2022-28001
08 Apr 2022 — Movie Seat Reservation v1 was discovered to contain a SQL injection vulnerability at /index.php?page=reserve via the id parameter. Se ha detectado que Movie Seat Reservation versión v1, contiene una vulnerabilidad de inyección SQL en /index.php?page=reserve por medio del parámetro id Movie Seat Reservation System version 1.0 suffers from file disclosure and remote SQL injection vulnerabilities. • http://packetstormsecurity.com/files/166658/Movie-Seat-Reservation-System-1.0-File-Disclosure-SQL-Injection.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •