2 matches found
CVE-2026-2848
A flaw has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=register of the component Registration. This manipulation of the argument Username causes sql injection. The attack may be...
CVE-2023-1041
The CVE-2023-1041 entry affects SourceCodester Simple Responsive Tourism Website 1.0, specifically the file /tourism/rate_review.php. The vulnerability arises from improper handling of the id parameter; a crafted input like 1"> enables cross-site scripting (XSS). Exploitation is possible remot...