Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
seat-reservation-system_project vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-25763
Seat Reservation System version 1.0 suffers from an Unauthenticated File Upload Vulnerability allowing Remote Attackers to gain Remote Code Execution (RCE) on the Hosting Webserver via uploading PHP files....
Seat Reservation System Project Seat Reservation System 1.0
6.4
CVSSv2
CVE-2020-25762
An issue was discovered in SourceCodester Seat Reservation System 1.0. The file admin_class.php does not perform input validation on the username and password parameters. An attacker can send malicious input in the post request to /admin/ajax.php?action=login and bypass...
Seat Reservation System Project Seat Reservation System 1.0
5
CVSSv2
CVE-2020-36002
Seat-Reservation-System 1.0 has a SQL injection vulnerability in index.php in the id and file parameters where attackers can obtain sensitive database information....
Seat-reservation-system Project Seat-reservation-system 1.0
7.5
CVSSv2
CVE-2015-7235
Multiple SQL injection vulnerabilities in dex_reservations.php in the CP Reservation Calendar plugin before 1.1.7 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in a dex_reservations_calendar_load2 action or (2) dex_item parameter...
Cp Reservation Calender Project Cp Reservation Calender
1 EDB exploit available
7.5
CVSSv2
CVE-2020-35378
SQL Injection in the login page in Online Bus Ticket Reservation 1.0 allows attackers to execute arbitrary SQL commands and bypass authentication via the username and password fields....
Online Bus Ticket Reservation Project Online Bus Ticket Reservation 1.0
7.5
CVSSv2
CVE-2020-29284
The file view-chair-list.php in Multi Restaurant Table Reservation System 1.0 does not perform input validation on the table_id parameter which allows unauthenticated SQL Injection. An attacker can send malicious input in the GET request to...
Multi Restaurant Table Reservation System Project Multi Restaurant Table Reservation System 1.0
6.5
CVSSv2
CVE-2020-26773
Restaurant Reservation System 1.0 suffers from an authenticated SQL injection vulnerability, which allows a remote, authenticated attacker to execute arbitrary SQL commands via the date parameter in includes/reservation.inc.php....
Restaurant Reservation System Project Restaurant Reservation System 1.0
4.3
CVSSv2
CVE-2009-3067
Cross-site scripting (XSS) vulnerability in index.php in Reservation Manager allows remote attackers to inject arbitrary web script or HTML via the resman_startdate parameter....
Webformatique Reservation Manager -
7.5
CVSSv2
CVE-2008-4204
SQL injection vulnerability in city.asp in SoftAcid Hotel Reservation System (HRS) allows remote attackers to execute arbitrary SQL commands via the city parameter....
Softacid Hotel Reservation System
1 EDB exploit available
4.3
CVSSv2
CVE-2008-0774
Cross-site scripting (XSS) vulnerability in search.cgi in Loris Hotel Reservation System 3.01 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the hotel_name parameter. NOTE: the provenance of this information is unknown; the details are...
Loris Hotel Reservation System
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-24686
CVE-2021-21298
CVE-2021-69420
server-side request forgery
CVE-2021-23957
microsoft
SSTI
.net
SQL
CVE-2021-21273
CVE-2021-25281
1
2
3
4
5
NEXT »
Vulmon