2 matches found
CVE-2023-31938
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeedetail.php...
CVE-2023-31938
The CVE-2023-31938 entry concerns Online Travel Agency System v1.0 with a SQL injection in the emp_id parameter of employee_detail.php. The underlying issue allows a remote attacker to execute arbitrary code, as indicated by the description and CVSS/impact data (C, I, A = HIGH; base score 7.2). P...