ГлавнаяУязвимости → CVE-2025-13344
7.3высокая

CVE-2025-13344

Описание

A weakness has been identified in SourceCodester Train Station Ticketing System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=login. This manipulation of the argument Username causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

Затрагиваемое ПО
Oretnom23 Train station ticketing system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/puppytgyh/-CVE/issues/14https://vuldb.com/?ctiid.332762https://vuldb.com/?id.332762https://vuldb.com/?submit.691940https://www.sourcecodester.com/