3 matches found
CVE-2022-40353
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/upbooking.php...
CVE-2022-40353
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/upbooking.php...
CVE-2022-40353
CVE-2022-40353 affects Online Tours & Travels Management System v1.0. The vulnerability is a SQL injection via the id parameter at /admin/up_booking.php ; the issue stems from unvalidated external input. CVSSv3.1 base metrics indicate a HIGH impact with NETWORK attack vector, LOW attack complexit...