Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-64108
HistoryAug 19, 2023 - 12:00 a.m.

Online Travel Agency System article_edit.php File SQL Injection Vulnerability

2023-08-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
online travel agency
sql injection
vulnerability
validation
sql commands
database data
cnvd

EPSS

0.001

Percentile

44.5%

JSON

Online Travel Agency System is an online travel agency system. A SQL injection vulnerability exists in Online Travel Agency System v1.0, which originates from a lack of validation of the article_edit.php parameter page_id against an externally-entered SQL statement. An attacker can exploit this vulnerability to execute illegal SQL commands to steal sensitive database data.

Related

cvelist 1
cve 1
prion 1
nvd 1
cvelist
cvelist
CVE-2023-31940
2023-08-17 00:00:00
cve
cve
CVE-2023-31940
2023-08-17 20:15:09
prion
prion
Sql injection
2023-08-17 20:15:00
nvd
nvd
CVE-2023-31940
2023-08-17 20:15:09

EPSS

0.001

Percentile

44.5%

JSON
Related for CNVD-2023-64108
cvelist1cve1prion1nvd1