CVE-2022-40097
CVE-2022-40097 affects Online Tours & Travels Management System v1.0, with a SQL injection vulnerability in the id parameter of /admin/update_currency.php. Root cause: lack of input validation/parameterized queries leads to arbitrary SQL execution. Impact, as documented, includes potential disclo...