PT-2023-23542 · Unknown · Online Travel Agency System
Name of the Vulnerable Software and Affected Versions: Online Travel Agency System version 1.0 Description: A SQL injection issue allows a remote attacker to execute arbitrary code via the emp id parameter at the "employee edit.php" endpoint. This enables the attacker to potentially access and...