Covid-19 Travel Pass Management System is a Covid-19 travel pass management system. It provides an online platform for submitting travel passes within the Covid-19 restrictions. SQL injection vulnerability exists in the Covid-19 Travel Pass Management System v1.0 version, which originates from /ctpms/classes/Master.php?f=update_ application_status lacks validation for external input SQL statements. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
CPE | Name | Operator | Version |
---|---|---|---|
Carlo Montero Covid-19 Travel Pass Management System v | eq | 1.0 |