Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Online_railway_reservation_system
(Online_railway_reservation_system_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 16 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-06-29 | CVE-2022-33060 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_schedule. | Online_railway_reservation_system | 7.2 | ||
| 2022-06-21 | CVE-2022-33048 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/reservations/view_details.php. | Online_railway_reservation_system | 7.2 | ||
| 2022-06-21 | CVE-2022-33049 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manage_user. | Online_railway_reservation_system | 7.2 | ||
| 2022-06-21 | CVE-2022-33055 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/manage_train.php. | Online_railway_reservation_system | 7.2 | ||
| 2022-06-21 | CVE-2022-33056 | Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/schedules/manage_schedule.php. | Online_railway_reservation_system | 7.2 | ||
| 2022-01-21 | CVE-2021-46308 | An SQL Injection vulnerability exists in Sourcecodester Online Railway Reservation Sysytem 1.0 via the sid parameter. | Online_railway_reservation_system | 9.8 |