Vulnerabilities > Phpgurukul > BUS Pass Management System > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-30 | CVE-2022-35156 | SQL Injection vulnerability in PHPgurukul BUS Pass Management System 1.0 Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php.. | 9.8 |
| 2022-08-22 | CVE-2022-36198 | SQL Injection vulnerability in PHPgurukul BUS Pass Management System 1.0 Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and buspassms/admin/edit-pass-detail.php | 9.8 |