CVE-2023-31938

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the emp_id parameter at employee_detail.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt