0Xkami

**Name of the Vulnerable Software and Affected Versions** Online-Movie-Ticket-Booking-System version 1.0 **Description** The issue concerns a lack of input validation on the `id` parameter in the about.php file. This allows an attacker to append SQL queries to the input, potentially extracting sensitive information from the database. **Recommendations** For Online-Movie-Ticket-Booking-System version 1.0, consider validating the `id` parameter in the about.php file to prevent SQL injection attacks. As a temporary workaround, restrict access to the about.php file until a proper fix is implemented.