CVE-2023-6765 | SourceCodester Online Tours & Travels Management System 1.0 email_setup.php prepare name sql injection

Posted by Angelo Barbosa | Dec 13, 2023 | CVE

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects the function prepare of the file email_setup.php. The manipulation of the argument name leads to sql injection.

The identification of this vulnerability is CVE-2023-6765. The attack needs to be initiated within the local network. Furthermore, there is an exploit available.

CVE-2023-6765 | SourceCodester Online Tours & Travels Management System 1.0 email_setup.php prepare name sql injection

Related Posts

CVE-2023-42736 | Unisoc S8000 Telecom Service permission

CVE-2024-4894 | ITPison OMICARD EDM up to 5.x URL Parameter server-side request forgery

CVE-2023-46739 | CubeFS up to 3.3.0 information exposure

CVE-2024-6119 | OpenSSL up to 3.0.14/3.1.6/3.2.2/3.3.1 TLS Server Certificate Check type confusion