Online Bus Booking System Project Online Bus Booking System — known CVE vulnerabilities
Every CVE whose affected-product data names Online Bus Booking System Project Online Bus Booking System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-45012 — CVSS 9.8 (critical): Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'user_email' parameter of the…
CVE-2020-25273 — CVSS 9.8 (critical): In SourceCodester Online Bus Booking System 1.0, there is Authentication bypass on the Admin Login screen in admin.php via username or…
CVE-2020-25889 — CVSS 9.8 (critical): Online Bus Booking System Project Using PHP/MySQL version 1.0 has SQL injection via the login page. By placing SQL injection payload on the…
CVE-2023-45019 — CVSS 9.8 (critical): Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'category' parameter of the…
CVE-2023-45015 — CVSS 9.8 (critical): Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'date' parameter of the…
CVE-2023-45018 — CVSS 9.8 (critical): Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the…
CVE-2020-25272 — CVSS 6.1 (medium): In SourceCodester Online Bus Booking System 1.0, there is XSS through the name parameter in book_now.php.