Isic.lk Project Isic.lk — known CVE vulnerabilities
Every CVE whose affected-product data names Isic.lk Project Isic.lk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-30528 — CVSS 9.8 (critical): SQL Injection vulnerability in asith-eranga ISIC tour booking through version published on Feb 13th 2018, allows attackers to execute…
CVE-2022-28607 — CVSS 7.5 (high): An issue was discovered in asith-eranga ISIC tour booking through version published on Feb 13th 2018, allows attackers to gain sensitive…
CVE-2022-30529 — CVSS 7.2 (high): File upload vulnerability in asith-eranga ISIC tour booking through version published on Feb 13th 2018, allows attackers to upload…