3 matches found
CVE-2022-40352
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/updatetraveller.php...
CVE-2022-40352
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/updatetraveller.php...
CVE-2022-40352
CVE-2022-40352 affects Online Tours & Travels Management System v1.0. The vulnerability is a SQL injection in the id parameter of the /admin/update_traveller.php endpoint (originating from the web app’s input handling). Impact indicators from the CVE entry show high confidentiality, integrity, an...