4 matches found
CVE-2023-31943
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the ticketid parameter at ticketdetail.php...
CVE-2023-31943
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the ticketid parameter at ticketdetail.php...
CVE-2023-31943
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the ticketid parameter at ticketdetail.php...
CVE-2023-31943
CVE-2023-31943 describes a SQL injection vulnerability in Online Travel Agency System v1.0. The issue stems from unsafe handling of the ticket_id parameter in ticket_detail.php, allowing a remote attacker to potentially execute arbitrary SQL commands. NVD metrics indicate high impact (CVSS v3.1: ...