CVE-2024-7500

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function savesettings of the file admin/adminclass.php. The manipulation of the argument img leads to unrestricted upload. The attack may be launched remotely. Th...

CVE-2024-7500 itsourcecode Airline Reservation System admin_class.php save_settings unrestricted upload

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function savesettings of the file admin/adminclass.php. The manipulation of the argument img leads to unrestricted upload. The attack may be launched remotely. Th...

CVE-2024-7500

CVE-2024-7500 affects itsourcecode Airline Reservation System 1.0. The vulnerable component is the save_settings function in admin/admin_class.php, where manipulation of the img argument enables unrestricted file uploads. The issue is exploitable remotely, and public disclosures exist (VDB-273626...

CVE-2024-7498 itsourcecode Airline Reservation System Admin Login Page login.php login2 sql injection

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection. It is possible to...

CVE-2024-7497

A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been...

CVE-2024-7497 itsourcecode Airline Reservation System index.php file inclusion

A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been...

CVE-2024-7496 itsourcecode Airline Reservation System index.php file inclusion

A vulnerability has been found in itsourcecode Airline Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack can be initiated remotely. The exploit has been...

itsourcecode Airline Reservation System SQL注入漏洞

itsourcecode Airline Reservation System is an airline reservation system from itsourcecode, Inc. A SQL injection vulnerability exists in version 1.0 of itsourcecode Airline Reservation System, which stems from an incorrect manipulation of the parameter username that can lead to sql injection...