📦 Travel Website

Travel Website v1.0 contains unauthenticated SQL injection vulnerabilities in the hotelDetails.php resource, allowing attackers to execute arbitrary SQL commands without authentication. This affects a...

Travel Website v1.0 has unauthenticated SQL injection vulnerabilities in the loginAction.php file, specifically in the username parameter. Attackers can execute arbitrary SQL commands without authenti...

Travel Website v1.0 contains an unauthenticated SQL injection vulnerability in the booking.php resource's hotelIDHidden parameter. Attackers can execute arbitrary SQL commands without authentication, ...