Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and buspassms/admin/edit-pass-detail.php
References
Link | Resource |
---|---|
https://github.com/jcarabantes/Bus-Vulnerabilities | Exploit Third Party Advisory |
https://phpgurukul.com/bus-pass-management-system-using-php-and-mysql | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2022-08-22 01:15
Updated : 2023-11-14 20:37
NVD link : CVE-2022-36198
Mitre link : CVE-2022-36198
CVE.ORG link : CVE-2022-36198
JSON object : View
Products Affected
phpgurukul
- bus_pass_management_system
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')