11 matches found
EUVD-2022-43410
Malicious code in bioql PyPI...
CVE-2024-48411
CVE-2024-48411 affects itsourcecode Online Tours and Travels Management System v1.0. A SQL Injection vulnerability exists in the forget_password.php flow, exploitable via a crafted payload to the val-email parameter. The linked documents consistently name SQLi as the issue and identify the vulner...
Online Tours & Travels Management System 代码问题漏洞
Online Tours & Travels Management System is an online tours management system by Mayuri K. Individual developer. A code issue exists in SourceCodester Online Tours & Travels Management System version 1.0, which is caused by an unknown function in the file admin/ab.php, which causes unrestricted...
CVE-2023-0530
A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin/approveuser.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely...
CVE-2023-0534 SourceCodester Online Tours & Travels Management System expense_report.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Online Tours & Travels Management System 1.0. This affects an unknown part of the file admin/expensereport.php. The manipulation of the argument todate leads to sql injection. It is possible to initiate the attack...
CVE-2022-40099
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/updateexpensecategory.php...
CVE-2022-40097
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/updatecurrency.php...
Sql injection
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/updateexpensecategory.php...
CVE-2022-40099
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/updateexpensecategory.php...
Sql injection
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tour/admin/updatepayment.php...
CVE-2022-40093
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tour/admin/updatetax.php...