A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters.
Metrics
Affected Vendors & Products
References
History
Fri, 23 Aug 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Kashipara
Kashipara bus Ticket Reservation System |
|
Weaknesses | CWE-89 | |
CPEs | cpe:2.3:a:kashipara:bus_ticket_reservation_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Kashipara
Kashipara bus Ticket Reservation System |
|
Metrics |
cvssV3_1
|
Fri, 23 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-08-23T00:00:00
Updated: 2024-08-23T14:44:46.667Z
Reserved: 2024-08-05T00:00:00
Link: CVE-2024-42765
Vulnrichment
Updated: 2024-08-23T14:44:41.129Z
NVD
Status : Awaiting Analysis
Published: 2024-08-23T15:15:16.447
Modified: 2024-08-23T16:18:28.547
Link: CVE-2024-42765
Redhat
No data.