Vulnerabilities > Online Railway Reservation System Project > Online Railway Reservation System > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-21	CVE-2022-33056	SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/schedules/manage_schedule.php. network low complexity online-railway-reservation-system-project CWE-89	6.5
2022-01-21	CVE-2021-46308	SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 An SQL Injection vulnerability exists in Sourcecodester Online Railway Reservation Sysytem 1.0 via the sid parameter. network low complexity online-railway-reservation-system-project CWE-89 critical	10.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.