A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects the function
prepare
of the file email_setup.php. The manipulation of the argument name leads to sql injection.
The identification of this vulnerability is CVE-2023-6765. The attack needs to be initiated within the local network. Furthermore, there is an exploit available.