CVE-2026-3708 | code-projects Simple Flight Ticket Booking System 1.0 /login.php Username sql injection

Inserito da Angelo Barbosa | Mar 7, 2026 | CVE

A vulnerability has been found in code-projects Simple Flight Ticket Booking System 1.0 and classified as critical. The impacted element is an unknown function of the file /login.php. Performing a manipulation of the argument Username results in sql injection.

This vulnerability was named CVE-2026-3708. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-3708 | code-projects Simple Flight Ticket Booking System 1.0 /login.php Username sql injection

Post correlati

CVE-2025-58089 | MedDream PACS Premium 7.3.6.870 config.php longtermdir cross site scripting

CVE-2024-56584 | Linux Kernel up to 6.1.119/6.6.65/6.12.4 xa_store allocation of resources

Zoom Rooms Privilege Management privileges management

CVE-2024-7946 | itsourcecode Online Blood Bank Management System 1.0 User Signup register.php user sql injection