CVE-2023-4866
The CVE refers to SourceCodester Online Tours & Travels Management System 1.0. The issue is a SQL injection in the booking.php file, triggered by manipulating the id argument passed to the exec function. This describes a server-side code path where user-controlled input affects a SQL-executing fu...