Online Travel Agency System Project Online Travel Agency System — known CVE vulnerabilities
Every CVE whose affected-product data names Online Travel Agency System Project Online Travel Agency System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2023-31938 — CVSS 7.2 (high): SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the emp_id…
CVE-2023-31939 — CVSS 7.2 (high): SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the…
CVE-2023-31940 — CVSS 7.2 (high): SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the page_id…
CVE-2023-31941 — CVSS 7.2 (high): File Upload vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via a crafted PHP…
CVE-2023-31946 — CVSS 7.2 (high): File Upload vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via a crafted PHP…
CVE-2023-31943 — CVSS 7.2 (high): SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the ticket_id…
CVE-2023-31944 — CVSS 7.2 (high): SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the emp_id…
CVE-2023-31945 — CVSS 7.2 (high): SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the id…
CVE-2023-31942 — CVSS 4.8 (medium): Cross Site Scripting vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the…