PT-2024-15888 · Unknown · Sourcecodester Online Tours & Travels Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Tours & Travels Management System version 1.0 Description: A critical issue was found in the system, affecting the prepare function of the admin/pay.php file. The manipulation of the id argument leads to SQL injection...

SQL injection vulnerability in the climit parameter of the admin_pay.php page of the Ocean CMS system

Ocean CMS is an open source website builder. A SQL injection vulnerability exists in the Ocean CMS adminpay.php page. The lack of filtering of the climit parameter allows attackers to exploit the vulnerability to obtain sensitive database information...