SourceCodester Online Flight Booking Management System add_contestant.php sql injection
CVE-2023-0245
9.8CRITICAL
What is CVE-2023-0245?
A vulnerability has been identified in the SourceCodester Online Flight Booking Management System, specifically affecting the file add_contestant.php. This flaw allows an attacker to manipulate the argument add_contestant, leading to SQL injection attacks. Such vulnerabilities enable unauthorized access to the database, posing a risk of sensitive data exposure. The attack can be performed remotely, and the details of the exploit have been made public, highlighting the urgent need for users to update to the latest secured versions.
Affected Version(s)
Online Flight Booking Management System