Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
booking project booking vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-25889
Online Bus Booking System Project Using PHP/MySQL version 1.0 has SQL injection via the login page. By placing SQL injection payload on the login page attackers can bypass the authentication and can gain the admin privilege.
Online Bus Booking System Project Online Bus Booking System 1.0
9.8
CVSSv3
CVE-2023-0245
A vulnerability, which was classified as critical, has been found in SourceCodester Online Flight Booking Management System. This issue affects some unknown processing of the file add_contestant.php. The manipulation of the argument add_contestant leads to sql injection. The atta...
Online Flight Booking Management System Project Online Flight Booking Management System -
9.8
CVSSv3
CVE-2023-0281
A vulnerability was found in SourceCodester Online Flight Booking Management System. It has been rated as critical. Affected by this issue is some unknown functionality of the file judge_panel.php. The manipulation of the argument subevent_id leads to sql injection. The attack ma...
Online Flight Booking Management System Project Online Flight Booking Management System -
9.8
CVSSv3
CVE-2023-0283
A vulnerability classified as critical has been found in SourceCodester Online Flight Booking Management System. This affects an unknown part of the file review_search.php of the component POST Parameter Handler. The manipulation of the argument txtsearch leads to sql injection. ...
Online Flight Booking Management System Project Online Flight Booking Management System -
9.8
CVSSv3
CVE-2022-28093
SCBS Online Sports Venue Reservation System v1.0 exists to contain a local file inclusion vulnerability which allow malicious users to execute arbitrary code via a crafted PHP file.
Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
6.1
CVSSv3
CVE-2022-28094
SCBS Online Sports Venue Reservation System v1.0 exists to contain a cross-site scripting (XSS) vulnerability via the fid parameter at booking.php.
Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
9.8
CVSSv3
CVE-2022-28105
Online Sports Complex Booking System v1.0 exists to contain a blind SQL injection vulnerability via the id parameter in /scbs/view_facility.php.
Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
9.8
CVSSv3
CVE-2022-28106
Online Sports Complex Booking System v1.0 exists to allow malicious users to take over user accounts via a crafted POST request.
Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
9.8
CVSSv3
CVE-2022-30817
Simple Bus Ticket Booking System 1.0 is vulnerable to SQL Injection via /SimpleBusTicket/index.php.
Simple Bus Ticket Booking System Project Simple Bus Ticket Booking System 1.0
9.8
CVSSv3
CVE-2022-28962
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=delete_client.
Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »