Skip to main content

Airline Booking Software

1 CVEs product

Monthly

CVE-2015-2858 HIGH This Week

Datalex airline booking software before 2015-09-03 allows remote attackers to read or write to arbitrary user data via a modified profileId parameter to (1) ValidateFormAction.do or (2). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Airline Booking Software
NVD
CVSS 2.0
7.5
EPSS
0.4%
EPSS 0% CVSS 7.5
HIGH This Week

Datalex airline booking software before 2015-09-03 allows remote attackers to read or write to arbitrary user data via a modified profileId parameter to (1) ValidateFormAction.do or (2). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Airline Booking Software
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy