CVE-2023-50864 | Kashipara Group Travel Website 1.0 hotelDetails.php hotelId sql injection

Posted by Angelo Barbosa | Jan 4, 2024 | CVE

A vulnerability classified as critical has been found in Kashipara Group Travel Website 1.0. Affected is an unknown function of the file hotelDetails.php. The manipulation of the argument hotelId leads to sql injection.

This vulnerability is traded as CVE-2023-50864. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-50864 | Kashipara Group Travel Website 1.0 hotelDetails.php hotelId sql injection

Related Posts

CVE-2024-43989 | Firsh Justified Image Grid Plugin up to 4.6.1 on WordPress server-side request forgery

CVE-2024-7251 | Comodo Internet Security Pro 12.2.4.8032 link following (ZDI-24-956)

CVE-2024-2817 | Tenda AC15 15.03.05.18 SysToolRestoreSet fromSysToolRestoreSet cross-site request forgery

CVE-2024-32087 | ExportFeed Product Feed on WooCommerce for Google Plugin up to 3.5.7 on WordPress sql injection