Filtered by vendor Projectworlds
Subscriptions
Filtered by product Online Movie Ticket Booking System
Subscriptions
Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-44174 | 1 Projectworlds | 1 Online Movie Ticket Booking System | 2024-11-21 | 6.4 Medium |
| Online Movie Ticket Booking System v1.0 is vulnerable to an authenticated Stored Cross-Site Scripting vulnerability. | ||||
| CVE-2023-44173 | 1 Projectworlds | 1 Online Movie Ticket Booking System | 2024-11-21 | 5.4 Medium |
| Online Movie Ticket Booking System v1.0 is vulnerable to an authenticated Reflected Cross-Site Scripting vulnerability. | ||||
| CVE-2023-44166 | 1 Projectworlds | 1 Online Movie Ticket Booking System | 2024-11-21 | 9.8 Critical |
| The 'age' parameter of the process_registration.php resource does not validate the characters received and they are sent unfiltered to the database. | ||||
| CVE-2023-44164 | 1 Projectworlds | 1 Online Movie Ticket Booking System | 2024-11-21 | 9.8 Critical |
| The 'Email' parameter of the process_login.php resource does not validate the characters received and they are sent unfiltered to the database. | ||||
| CVE-2023-44163 | 1 Projectworlds | 1 Online Movie Ticket Booking System | 2024-11-21 | 9.8 Critical |
| The 'search' parameter of the process_search.php resource does not validate the characters received and they are sent unfiltered to the database. | ||||
| CVE-2021-44866 | 1 Projectworlds | 1 Online Movie Ticket Booking System | 2024-11-21 | 7.5 High |
| An issue was discovered in Online-Movie-Ticket-Booking-System 1.0. The file about.php does not perform input validation on the 'id' paramter. An attacker can append SQL queries to the input to extract sensitive information from the database. | ||||
Page 1 of 1.