K1Ven

**Name of the Vulnerable Software and Affected Versions** Simple Flight Ticket Booking System version 1.0 **Description** An issue exists in the POST Parameter Handler component within the `checkUser.php` file. Remote manipulation of the `Username` parameter allows for SQL injection, a technique where malicious SQL statements are inserted into entry fields for execution. **Recommendations** Update Simple Flight Ticket Booking System to a version that contains a fix for this issue. As a temporary workaround, restrict access to the `checkUser.php` file or sanitize the `Username` parameter to minimize the risk of exploitation.