Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

seat reservation system project seat reservation system 1.0 vulnerabilities and exploits

(subscribe to this query)

7.5
CVSSv2
CVE-2020-25763
Seat Reservation System version 1.0 suffers from an Unauthenticated File Upload Vulnerability allowing Remote Attackers to gain Remote Code Execution (RCE) on the Hosting Webserver via uploading PHP files....
Seat Reservation System Project Seat Reservation System 1.0
6.4
CVSSv2
CVE-2020-25762
An issue was discovered in SourceCodester Seat Reservation System 1.0. The file admin_class.php does not perform input validation on the username and password parameters. An attacker can send malicious input in the post request to /admin/ajax.php?action=login and bypass...
Seat Reservation System Project Seat Reservation System 1.0
5
CVSSv2
CVE-2020-36002
Seat-Reservation-System 1.0 has a SQL injection vulnerability in index.php in the id and file parameters where attackers can obtain sensitive database information....
Seat-reservation-system Project Seat-reservation-system 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
unprivilegedCVE-2016-8138CVE-2016-8155local file inclusionCVE-2016-8111CVE-2021-27730XML external entityCVE-2021-21973CVE-2021-21972