CVE-2023-1589
published 2023-03-23CVE-2023-1589: A vulnerability has been found in SourceCodester Online Tours & Travels Management System 1.0 and classified as critical. This vulnerability affects the…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A vulnerability has been found in SourceCodester Online Tours & Travels Management System 1.0 and classified as critical. This vulnerability affects the function exec of the file admin/operations/approve_delete.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-223654 is the identifier assigned to this vulnerability.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| doorkeeper_project | doorkeeper | >= 0 < 5.6.6 | 5.6.6 |
| online_tours_travels_management_system_project | online_tours_travels_management_system | — | — |
| sourcecodester | online_tours_travels_management_system | — | — |