CVE-2024-7499

Name of the Vulnerable Software and Affected Versions Airline Reservation System version 1.0

Description A critical issue was found in the Airline Reservation System, affecting an unknown functionality of the file flights.php. The manipulation of the departure airport id argument leads to SQL injection. This issue can be exploited remotely.

Recommendations For Airline Reservation System version 1.0, as a temporary workaround, consider restricting access to the flights.php file or disabling the functionality that uses the departure airport id argument until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.