Bus Pass Management System Phpgurukul Bus Pass Management System

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Phpgurukul Bus Pass Management System.

By the Year

In 2025 there have been 1 vulnerability in Phpgurukul Bus Pass Management System with an average score of 9.8 out of ten. Bus Pass Management System did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2025 as compared to last year.

Year Vulnerabilities Average Score
2025 1 9.80
2024 0 0.00
2023 0 0.00
2022 4 8.05
2021 2 6.45
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Bus Pass Management System vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Phpgurukul Bus Pass Management System Security Vulnerabilities

A vulnerability, which was classified as critical, was found in PHPGurukul Bus Pass Management System 1.0

CVE-2025-3146 9.8 - Critical - April 03, 2025

A vulnerability, which was classified as critical, was found in PHPGurukul Bus Pass Management System 1.0. This affects an unknown part of the file /view-pass-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

SQL Injection

Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability

CVE-2022-35156 9.8 - Critical - September 30, 2022

Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php..

SQL Injection

Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability

CVE-2022-35155 6.1 - Medium - September 30, 2022

Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the searchdata parameter.

XSS

Multiple SQL injections detected in Bus Pass Management System 1.0

CVE-2022-36198 9.8 - Critical - August 22, 2022

Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and buspassms/admin/edit-pass-detail.php

SQL Injection

An insecure direct object reference (IDOR) vulnerability in the viewid parameter of Bus Pass Management System v1.0

CVE-2022-29008 6.5 - Medium - May 11, 2022

An insecure direct object reference (IDOR) vulnerability in the viewid parameter of Bus Pass Management System v1.0 allows attackers to access sensitive information.

Insecure Direct Object Reference / IDOR

In Bus Pass Management System v1.0

CVE-2021-44317 5.4 - Medium - December 16, 2021

In Bus Pass Management System v1.0, parameters 'pagedes' and `About Us` are affected with a Stored Cross-site scripting vulnerability.

XSS

In Bus Pass Management System v1.0, Directory Listing/Browsing is enabled on the web server which

CVE-2021-44315 7.5 - High - December 16, 2021

In Bus Pass Management System v1.0, Directory Listing/Browsing is enabled on the web server which allows an attacker to view the sensitive files of the application, for example: Any file which contains sensitive information of the user or server.

Files or Directories Accessible to External Parties

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Phpgurukul Bus Pass Management System or by Phpgurukul? Click the Watch button to subscribe.

Phpgurukul
Vendor

subscribe