A SQL injection vulnerability in "/login.php" of the...
Critical severity
Unreviewed
Published
Aug 23, 2024
to the GitHub Advisory Database
•
Updated Aug 23, 2024
Description
Published by the National Vulnerability Database
Aug 23, 2024
Published to the GitHub Advisory Database
Aug 23, 2024
Last updated
Aug 23, 2024
A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters.
References