2 matches found
CVE-2022-40354
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/updatebooking.php...
CVE-2022-40354
CVE-2022-40354 affects Online Tours & Travels Management System v1.0. It describes a SQL injection in the id parameter of /admin/update_booking.php due to insufficient input validation, enabling potential arbitrary SQL execution with high impact. No official patch details are provided in the docu...