cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-26958,https://securityvulnerability.io/vulnerability/CVE-2023-26958,Cross Site Scripting Vulnerability in Phpgurukul Park Ticketing Management System,"The Park Ticketing Management System 1.0 developed by Phpgurukul is susceptible to a Cross Site Scripting (XSS) attack through the Admin Name parameter. This vulnerability allows attackers to inject malicious scripts, potentially compromising user sessions and sensitive information. Proper validation and sanitization of input data are essential to mitigate this risk.",PHPgurukul,Park Ticketing Management System,4.8,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2023-03-27T00:00:00.000Z,0
CVE-2023-26959,https://securityvulnerability.io/vulnerability/CVE-2023-26959,SQL Injection Vulnerability in Phpgurukul Park Ticketing Management System,"The Park Ticketing Management System version 1.0 by Phpgurukul has a vulnerability that allows attackers to exploit SQL Injection through the User Name parameter. This security flaw enables unauthorized users to manipulate database queries, potentially compromising sensitive data and gaining unauthorized access to the system.",PHPgurukul,Park Ticketing Management System,9.8,CRITICAL,0.0016299999551847577,false,,false,false,false,,,false,false,,2023-03-27T00:00:00.000Z,0