Projectworlds Online Movie Ticket Booking System — known CVE vulnerabilities
Every CVE whose affected-product data names Projectworlds Online Movie Ticket Booking System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2023-44163 — CVSS 9.8 (critical): The 'search' parameter of the process_search.php resource does not validate the characters received and they are sent unfiltered to the…
CVE-2023-44164 — CVSS 9.8 (critical): The 'Email' parameter of the process_login.php resource does not validate the characters received and they are sent unfiltered to the…
CVE-2023-44166 — CVSS 9.8 (critical): The 'age' parameter of the process_registration.php resource does not validate the characters received and they are sent unfiltered to the…
CVE-2021-44866 — CVSS 7.5 (high): An issue was discovered in Online-Movie-Ticket-Booking-System 1.0. The file about.php does not perform input validation on the 'id'…
CVE-2023-44174 — CVSS 6.4 (medium): Online Movie Ticket Booking System v1.0 is vulnerable to an authenticated Stored Cross-Site Scripting vulnerability.
CVE-2023-44173 — CVSS 5.4 (medium): Online Movie Ticket Booking System v1.0 is vulnerable to an authenticated Reflected Cross-Site Scripting vulnerability.