CVE-2024-48411 Information

Description

itsourcecode Online Tours and Travels Management System v1.0 is vulnerable to SQL Injection (SQLI) via a crafted payload to the val-email parameter in forget_password.php.

Reference

https://github.com/Comitora/CVEs/blob/main/CVE-2024-48411