2022-02-03 13:19:33
mitre
PUBLISHED
An issue was discovered in Online-Movie-Ticket-Booking-System 1.0. The file about.php does not perform input validation on the id paramter. An attacker can append SQL queries to the input to extract sensitive information from the database.