Sourcecodester Train Station Ticketing System vulnerabilities
5 known vulnerabilities affecting sourcecodester/train_station_ticketing_system.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2025-13346MEDIUMCVSS 5.3v1.02025-11-18
CVE-2025-13346 [MEDIUM] CWE-74 CVE-2025-13346: A vulnerability was detected in SourceCodester Train Station Ticketing System 1.0. This affects an u
A vulnerability was detected in SourceCodester Train Station Ticketing System 1.0. This affects an unknown part of the file /ajax.php?action=save_station. Performing manipulation of the argument id/station results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used.
cvelistv5nvd
CVE-2025-13344MEDIUMCVSS 6.9v1.02025-11-18
CVE-2025-13344 [MEDIUM] CWE-74 CVE-2025-13344: A weakness has been identified in SourceCodester Train Station Ticketing System 1.0. Affected by thi
A weakness has been identified in SourceCodester Train Station Ticketing System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=login. This manipulation of the argument Username causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploi
cvelistv5nvd
CVE-2025-13345MEDIUMCVSS 5.3v1.02025-11-18
CVE-2025-13345 [MEDIUM] CWE-74 CVE-2025-13345: A security vulnerability has been detected in SourceCodester Train Station Ticketing System 1.0. Aff
A security vulnerability has been detected in SourceCodester Train Station Ticketing System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=save_ticket. Such manipulation leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.
cvelistv5nvd
CVE-2025-13347MEDIUMCVSS 5.3v1.02025-11-18
CVE-2025-13347 [MEDIUM] CWE-74 CVE-2025-13347: A flaw has been found in SourceCodester Train Station Ticketing System 1.0. This vulnerability affec
A flaw has been found in SourceCodester Train Station Ticketing System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=save_user. Executing manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used.
cvelistv5nvd
CVE-2023-3003CRITICALCVSS 9.8v1.02023-05-31
CVE-2023-3003 [MEDIUM] CWE-89 CVE-2023-3003: A vulnerability classified as critical was found in SourceCodester Train Station Ticketing System 1.
A vulnerability classified as critical was found in SourceCodester Train Station Ticketing System 1.0. Affected by this vulnerability is an unknown functionality of the file manage_prices.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disc
cvelistv5nvd