| शीर्षक | Campcodes Online Flight Booking Management System 1.0 SQL Injection |
|---|
| विवरण | A SQL injection vulnerability has been identified in the "/admin/save_airlines.php" file in the "Online Flight Booking Management System" project. The issue is caused due to an attacker being able to inject malicious code via the parameter "id", which is used directly in SQL queries without proper sanitization or validation. This allows an attacker to spoof input values to manipulate SQL queries and perform unauthorized operations. |
|---|
| स्रोत | ⚠️ https://www.yuque.com/yuqueyonghuvrsrwv/dhlxlu/ykgg3tumuaefd0ft?singleDoc |
|---|
| उपयोगकर्ता | XenoEcho (UID 87913) |
|---|
| सबमिशन | 03/08/2025 05:40 PM (9 महीनों पहले) |
|---|
| संयम | 13/08/2025 05:56 PM (10 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 319952 [Campcodes Online Flight Booking Management System 1.0 /admin/save_airlines.php पहचान SQL इंजेक्शन] |
|---|
| अंक | 20 |
|---|