Phpgurukul

Park Ticketing Management System

20 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-45010

Exploit
  • EPSS 0.4%
  • Veröffentlicht 30.04.2025 00:00:00
  • Zuletzt bearbeitet 09.05.2025 13:45:09

A HTML Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the fromdate and todate POST re...

5.3

CVE-2025-45009

Exploit
  • EPSS 0.4%
  • Veröffentlicht 30.04.2025 00:00:00
  • Zuletzt bearbeitet 09.05.2025 13:45:16

A HTML Injection vulnerability was discovered in the normal-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata parameter.

5.4

CVE-2025-45019

Exploit
  • EPSS 0.32%
  • Veröffentlicht 30.04.2025 00:00:00
  • Zuletzt bearbeitet 09.05.2025 13:43:45

A SQL injection vulnerability was discovered in /add-foreigners-ticket.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the cprice POST request parameter.

9.8

CVE-2025-45018

Exploit
  • EPSS 0.62%
  • Veröffentlicht 30.04.2025 00:00:00
  • Zuletzt bearbeitet 09.05.2025 13:44:16

A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the todate parameter.

9.8

CVE-2025-45017

Exploit
  • EPSS 1.92%
  • Veröffentlicht 30.04.2025 00:00:00
  • Zuletzt bearbeitet 09.05.2025 13:44:30

A SQL injection vulnerability was discovered in edit-ticket.php of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the tprice POST request parameter.

6.1

CVE-2025-45015

Exploit
  • EPSS 0.18%
  • Veröffentlicht 30.04.2025 00:00:00
  • Zuletzt bearbeitet 09.05.2025 13:44:44

A Cross-Site Scripting (XSS) vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. The vulnerability allows remote attackers to inject arbitrary JavaScript code via the fro...

7.2

CVE-2025-45020

Exploit
  • EPSS 0.56%
  • Veröffentlicht 30.04.2025 00:00:00
  • Zuletzt bearbeitet 09.05.2025 13:45:23

A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the todate parameter in a PO...

9.8

CVE-2024-54811

Exploit
  • EPSS 0.22%
  • Veröffentlicht 12.12.2024 19:15:13
  • Zuletzt bearbeitet 03.04.2025 16:31:51

A SQL injection vulnerability in /index.php in PHPGurukul Park Ticketing Management System v1.0 allows an attacker to execute arbitrary SQL commands via the "login" parameter.

4.8

CVE-2023-26958

  • EPSS 0.09%
  • Veröffentlicht 27.03.2023 14:15:07
  • Zuletzt bearbeitet 21.11.2024 07:52:07

Phpgurukul Park Ticketing Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Admin Name parameter.

9.8

CVE-2023-26959

  • EPSS 0.09%
  • Veröffentlicht 27.03.2023 14:15:07
  • Zuletzt bearbeitet 21.11.2024 07:52:07

Phpgurukul Park Ticketing Management System 1.0 is vulnerable to SQL Injection via the User Name parameter.