Vulnerabilities (CVE)

Filtered by vendor Doditsolutions Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-17828 1 Doditsolutions 1 Busbooking-script 2024-02-04 3.5 LOW 4.8 MEDIUM
Bus Booking Script has XSS via the results.php datepicker parameter or the admin/new_master.php spemail parameter.
CVE-2017-17830 1 Doditsolutions 1 Bus Booking Script 2024-02-04 6.0 MEDIUM 6.8 MEDIUM
Bus Booking Script has CSRF via admin/new_master.php.
CVE-2017-17829 1 Doditsolutions 1 Bus Booking Script 2024-02-04 6.5 MEDIUM 7.2 HIGH
Bus Booking Script has SQL Injection via the admin/view_seatseller.php sp_id parameter or the admin/view_member.php memid parameter.