Phpgurukul Bus_pass_management_system
7 CVEs affecting Phpgurukul Bus_pass_management_system. Latest disclosed: 2025-04-03. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-35156 | Critical | 9.8 | 2022-09-30 | Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php.. |
CVE-2022-36198 | Critical | 9.8 | 2022-08-22 | Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, busp… |
CVE-2021-44315 | High | 7.5 | 2021-12-16 | In Bus Pass Management System v1.0, Directory Listing/Browsing is enabled on the web server which allows an attacker to view the sensitive files of the applica… |
CVE-2025-3146 | High | 7.3 | 2025-04-03 | A vulnerability, which was classified as critical, was found in PHPGurukul Bus Pass Management System 1.0. This affects an unknown part of the file /view-pass-… |
CVE-2022-29008 | Medium | 6.5 | 2022-05-11 | An insecure direct object reference (IDOR) vulnerability in the viewid parameter of Bus Pass Management System v1.0 allows attackers to access sensitive inform… |
CVE-2022-35155 | Medium | 6.1 | 2022-09-30 | Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the searchdata parameter. |
CVE-2021-44317 | Medium | 5.4 | 2021-12-16 | In Bus Pass Management System v1.0, parameters 'pagedes' and `About Us` are affected with a Stored Cross-site scripting vulnerability. |