Vulnerabilities > Online Railway Reservation System Project > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-18 | CVE-2024-7910 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 A vulnerability was found in CodeAstro Online Railway Reservation System 1.0 and classified as critical. | 7.2 |
| 2022-06-29 | CVE-2022-33057 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation. | 7.2 |
| 2022-06-29 | CVE-2022-33058 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_message. | 7.2 |
| 2022-06-29 | CVE-2022-33059 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_train. | 7.2 |
| 2022-06-29 | CVE-2022-33060 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_schedule. | 7.2 |
| 2022-06-29 | CVE-2022-33061 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_service. | 7.2 |
| 2022-06-29 | CVE-2022-33042 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/inquiries/view_details.php. | 7.2 |
| 2022-06-21 | CVE-2022-33048 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/reservations/view_details.php. | 7.2 |
| 2022-06-21 | CVE-2022-33049 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manage_user. | 7.2 |
| 2022-06-21 | CVE-2022-33055 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/trains/manage_train.php. | 7.2 |