What is the severity of CVE-2022-29008?

CVE-2022-29008 is categorized as a high-severity vulnerability due to its potential to expose sensitive information.

How does CVE-2022-29008 affect Bus Pass Management System v1.0?

CVE-2022-29008 allows attackers to exploit an insecure direct object reference to access unauthorized data within Bus Pass Management System v1.0.

How can I fix CVE-2022-29008?

To remediate CVE-2022-29008, implement proper access controls and validation checks to prevent unauthorized access to objects.

Who is affected by CVE-2022-29008?

Users and administrators of Bus Pass Management System v1.0 are susceptible to CVE-2022-29008 if they do not secure their applications properly.

What types of data could be exposed by CVE-2022-29008?

CVE-2022-29008 could potentially expose sensitive user information accessible through the vulnerable viewid parameter.

Vulnerability/
CVE-2022-29008

medium

6.5

CWE

639

11/5/2022

3/8/2024

CVE-2022-29008

First published: Wed May 11 2022(Updated: )

An insecure direct object reference (IDOR) vulnerability in the viewid parameter of Bus Pass Management System v1.0 allows attackers to access sensitive information.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Bus Pass Management System Project Bus Pass Management System	=1.0
Phpgurukul Bus Pass Management System	=1.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2022-29008?
CVE-2022-29008 is categorized as a high-severity vulnerability due to its potential to expose sensitive information.
How does CVE-2022-29008 affect Bus Pass Management System v1.0?
CVE-2022-29008 allows attackers to exploit an insecure direct object reference to access unauthorized data within Bus Pass Management System v1.0.
How can I fix CVE-2022-29008?
To remediate CVE-2022-29008, implement proper access controls and validation checks to prevent unauthorized access to objects.
Who is affected by CVE-2022-29008?
Users and administrators of Bus Pass Management System v1.0 are susceptible to CVE-2022-29008 if they do not secure their applications properly.
What types of data could be exposed by CVE-2022-29008?
CVE-2022-29008 could potentially expose sensitive user information accessible through the vulnerable viewid parameter.

collector/nvd-index
collector/nvd-api
agent/softwarecombine
agent/references
agent/author
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/tags
agent/source
vendor/bus pass management system project
canonical/bus pass management system project bus pass management system
version/bus pass management system project bus pass management system/1.0
vendor/phpgurukul
canonical/phpgurukul bus pass management system
version/phpgurukul bus pass management system/1.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.