CVE-2024-7635

Name of the Vulnerable Software and Affected Versions Simple Ticket Booking version 1.0

Description A critical issue has been found in the Registration Handler component of the affected software, specifically in the file register insert.php. The manipulation of the name, email, dob, password, Gender, or phone arguments leads to SQL injection. This issue can be exploited remotely.

Recommendations For Simple Ticket Booking version 1.0, consider disabling the Registration Handler component or restricting access to the register insert.php file until a patch is available. Avoid using the vulnerable arguments name, email, dob, password, Gender, and phone in the affected function to minimize the risk of exploitation.