CVE-2023-0528

Description

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been classified as critical. This affects an unknown part of the file admin/abc.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-219597 was assigned to this vulnerability.

Related CPE's

aonline_tours_\&_travels_management_system_projectonline_tours_\&_travels_management_system1.0*******

References

https://github.com/linmoren/online-tours-travels-management-system/blob/main/admin_abc_id.md

ExploitThird Party Advisory

https://vuldb.com/?ctiid.219597

Permissions RequiredThird Party Advisory

https://vuldb.com/?id.219597

Third Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io