📦 Online Travel Agency System

This SQL injection vulnerability in Online Travel Agency System v1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in daily_expenditure_edit.php. Attackers can potenti...

This SQL injection vulnerability in Online Travel Agency System v1.0 allows remote attackers to execute arbitrary SQL commands via the costomer_id parameter in customer_edit.php. This can lead to data...

This vulnerability allows remote attackers to upload malicious PHP files to an Online Travel Agency System v1.0 via the employee_insert.php endpoint. Successful exploitation enables arbitrary code exe...

This SQL injection vulnerability in Online Travel Agency System v1.0 allows remote attackers to execute arbitrary SQL commands via the ticket_id parameter. Attackers can potentially access, modify, or...