A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects the function
exec
of the file payment.php. The manipulation of the argument id leads to sql injection.
The identification of this vulnerability is CVE-2024-0884. The attack may be initiated remotely. Furthermore, there is an exploit available.