VYPR
Unrated severityNVD Advisory· Published Jan 25, 2024· Updated May 29, 2025

SourceCodester Online Tours & Travels Management System pay.php prepare sql injection

CVE-2024-0883

Description

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been declared as critical. This vulnerability affects the function prepare of the file admin/pay.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-252034 is the identifier assigned to this vulnerability.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.