Skip to main content

Bus Booking Script

3 CVEs product

Monthly

CVE-2017-17830 MEDIUM POC This Month

Bus Booking Script has CSRF via admin/new_master.php. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Bus Booking Script
NVD GitHub
CVSS 3.0
6.8
EPSS
0.1%
CVE-2017-17829 HIGH POC This Week

Bus Booking Script has SQL Injection via the admin/view_seatseller.php sp_id parameter or the admin/view_member.php memid parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Bus Booking Script
NVD GitHub
CVSS 3.0
7.2
EPSS
0.2%
CVE-2017-17645 CRITICAL POC Act Now

Bus Booking Script 1.0 has SQL Injection via the txtname parameter to admin/index.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Bus Booking Script
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
2.5%
EPSS 0% CVSS 6.8
MEDIUM POC This Month

Bus Booking Script has CSRF via admin/new_master.php. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Bus Booking Script
NVD GitHub
EPSS 0% CVSS 7.2
HIGH POC This Week

Bus Booking Script has SQL Injection via the admin/view_seatseller.php sp_id parameter or the admin/view_member.php memid parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Bus Booking Script
NVD GitHub
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

Bus Booking Script 1.0 has SQL Injection via the txtname parameter to admin/index.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Bus Booking Script
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy