CVE-2024-7636

Name of the Vulnerable Software and Affected Versions Simple Ticket Booking version 1.0

Description A critical issue was discovered in the Login component, specifically in the file authenticate.php, where the manipulation of the email and password arguments leads to SQL injection. This issue can be exploited remotely.

Recommendations For Simple Ticket Booking version 1.0, consider restricting access to the authenticate.php file until a patch is available. As a temporary workaround, avoid using the email and password arguments in the affected login functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.