CVE-2024-0735
published 2024-01-19CVE-2024-0735: A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. Affected by this issue is the function…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. Affected by this issue is the function exec of the file admin/operations/expense.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-251558 is the identifier assigned to this vulnerability.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mayurik | online_tours_travels_management_system | — | — |
| sourcecodester | online_tours_travels_management_system | — | — |