top of page
perceptive_background_267k.jpg

A weakness has been identified in code-projects Simple Flight Ticket Booking System 1.0. This affects an unknown function of the file /register.php. Executing a…

Published:

7 maart 2026 om 23:00:00

Alert date:

8 maart 2026 om 07:01:00

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

A SQL injection vulnerability has been identified in code-projects Simple Flight Ticket Booking System version 1.0. The vulnerability affects the /register.php file where manipulation of the Username parameter can lead to SQL injection attacks. The vulnerability can be exploited remotely and a public exploit is available, making it particularly dangerous. The weakness allows attackers to potentially access, modify, or delete database information through malicious SQL commands injected via the Username field during registration.

Technical details

Mitigation steps:

Affected products:

Simple Flight Ticket Booking System

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-3709
https://code-projects.org/
https://github.com/Owen-YuanW/CVE/issues/3
https://vuldb.com/?ctiid.349655
https://vuldb.com/?id.349655
https://vuldb.com/?submit.766142
https://vuldb.com/?submit.767883

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page