4 matches found
CVE-2023-0534
A vulnerability, which was classified as critical, was found in SourceCodester Online Tours & Travels Management System 1.0. This affects an unknown part of the file admin/expensereport.php. The manipulation of the argument todate leads to sql injection. It is possible to initiate the attack...
Sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Online Tours & Travels Management System 1.0. This affects an unknown part of the file admin/expensereport.php. The manipulation of the argument todate leads to sql injection. It is possible to initiate the attack...
CVE-2023-0534
CVE-2023-0534 describes a SQL injection vulnerability in SourceCodester Online Tours & Travels Management System 1.0, arising from unsafe manipulation of the to_date parameter in admin/expense_report.php. The flaw allows remote attackers to inject SQL; exploitation is supported by multiple source...
CVE-2023-0534 SourceCodester Online Tours & Travels Management System expense_report.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Online Tours & Travels Management System 1.0. This affects an unknown part of the file admin/expensereport.php. The manipulation of the argument todate leads to sql injection. It is possible to initiate the attack...