CVE-2026-3711
EUVD-2026-1021808.03.2026, 06:16
A vulnerability was detected in code-projects Simple Flight Ticket Booking System 1.0. Affected is an unknown function of the file /Adminupdate.php. The manipulation of the argument flightno/airplaneid/departure/dtime/arrival/atime/ec/ep/bc/bp results in sql injection. The attack can be executed remotely. The exploit is now public and may be used.
Awaiting analysis
This vulnerability is currently awaiting analysis.