Vulnerabilities > Doditsolutions > BUS Booking Script
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-21 | CVE-2017-17830 | Cross-Site Request Forgery (CSRF) vulnerability in Doditsolutions BUS Booking Script Bus Booking Script has CSRF via admin/new_master.php. | 6.8 |
| 2017-12-21 | CVE-2017-17829 | SQL Injection vulnerability in Doditsolutions BUS Booking Script Bus Booking Script has SQL Injection via the admin/view_seatseller.php sp_id parameter or the admin/view_member.php memid parameter. | 7.2 |