Vulnerabilities > Online BUS Booking System Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-08 | CVE-2020-25889 | SQL Injection vulnerability in Online BUS Booking System Project Online BUS Booking System 1.0 Online Bus Booking System Project Using PHP/MySQL version 1.0 has SQL injection via the login page. | 9.8 |
| 2020-10-08 | CVE-2020-25273 | SQL Injection vulnerability in Online BUS Booking System Project Online BUS Booking System 1.0 In SourceCodester Online Bus Booking System 1.0, there is Authentication bypass on the Admin Login screen in admin.php via username or password SQL injection. | 9.8 |
| 2020-10-08 | CVE-2020-25272 | Cross-site Scripting vulnerability in Online BUS Booking System Project Online BUS Booking System 1.0 In SourceCodester Online Bus Booking System 1.0, there is XSS through the name parameter in book_now.php. | 6.1 |