Spicejet Online Booking System
2 CVEs affecting Spicejet Online Booking System. Latest disclosed: 2026-04-23. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-6376 | | 2026-04-23 | A weakness in SpiceJet’s public booking retrieval page permits full passenger booking details to be accessed using only a PNR and last name, with no authentica… | |
CVE-2026-6375 | | 2026-04-23 | A vulnerability in SpiceJet’s booking API allows unauthenticated users to query passenger name records (PNRs) without any access controls. Because PNR identifi… |