CVE-2026-3723

Name of the Vulnerable Software and Affected Versions code-projects Simple Flight Ticket Booking System version 1.0

Description A security flaw exists in code-projects Simple Flight Ticket Booking System version 1.0. The issue involves SQL injection, potentially allowing remote attackers to exploit the system. The vulnerability is present in the file /Admindelete.php and occurs through manipulation of the flightno argument. The exploit has been publicly released.

Recommendations Apply any available updates or patches for code-projects Simple Flight Ticket Booking System version 1.0. As a temporary workaround, consider restricting access to the /Admindelete.php file or carefully validating the flightno argument to prevent SQL injection attacks.