CVE-2023-31944

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the emp_id parameter at employee_edit.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt