Skip to main content

Simple Flight Ticket Booking System EUVD-2026-35019

| CVE-2026-11488 MEDIUM
SQL Injection (CWE-89)
2026-06-08 VulDB GHSA-c5x4-8932-5hpr
PHP SQLi
5.5
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

3
Severity Changed
Jun 08, 2026 - 05:22 NVD
HIGH MEDIUM
CVSS changed
Jun 08, 2026 - 05:22 NVD
7.3 (HIGH) 5.5 (MEDIUM)
Analysis Generated
Jun 08, 2026 - 05:16 vuln.today

DescriptionCVE.org

A vulnerability has been found in code-projects Simple Flight Ticket Booking System 1.0. This affects an unknown part of the file checkUser.php of the component POST Parameter Handler. The manipulation of the argument Username leads to sql injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

SQL injection in code-projects Simple Flight Ticket Booking System 1.0 allows remote unauthenticated attackers to manipulate database queries via the Username POST parameter in checkUser.php. Publicly available exploit code exists (disclosed via GitHub), increasing the likelihood of opportunistic attacks against exposed instances, though the issue is not listed in CISA KEV. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify exposed booking app instance
Delivery
Send crafted POST to checkUser.php
Exploit
Inject SQL payload via Username parameter
Execution
Bypass authentication or extract DB rows
Impact
Harvest user credentials and booking data
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires a network-reachable instance of code-projects Simple Flight Ticket Booking System 1.0 with the checkUser.php endpoint accessible to the attacker - this is the default deployment configuration since checkUser.php is the login handler. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS vector AV:N/AC:L/PR:N/UI:N indicates remote, low-complexity, unauthenticated exploitation, which is the worst-case access profile. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An unauthenticated attacker locates an internet-exposed instance of Simple Flight Ticket Booking System and submits a crafted POST request to checkUser.php with a malicious Username payload such as ' OR 1=1-- to bypass authentication or extract data via UNION-based or boolean-based blind injection. Because publicly available exploit code exists at https://github.com/K1venn/cves/issues/1, the technique is reproducible without specialized skill, and the attacker can dump user credentials or booking data from the database.
Remediation No vendor-released patch identified at time of analysis - code-projects.org distributes this as an educational/template project and has no published advisory or fix version referenced in the available data. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

24 hours: Identify all deployments of Simple Flight Ticket Booking System 1.0 and assess their network exposure; isolate systems if operationally feasible. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-49952 CRITICAL POC
9.3 Jun 15

Authentication bypass in Discuz! X5.0 releases 20260320 through 20260501 allows unauthenticated remote attackers to acce
CVE-2026-49954 HIGH POC
8.6 Jun 15

Authenticated remote code execution in Discuz! X5.0 releases 20260320 through 20260501 allows administrators to chain a

CVE-2026-49768 CRITICAL
9.8 Jun 15

Unauthenticated PHP Object Injection in the Happyforms WordPress plugin (versions <= 1.26.13) allows remote attackers to
CVE-2026-27053 CRITICAL
9.8 Jun 15

Unauthenticated PHP Object Injection in the Broadcast Live Video WordPress plugin (versions prior to 7.1.3) allows remot
CVE-2026-49104 CRITICAL
9.8 Jun 15

Unauthenticated PHP object injection in the WordPress plugin 'Integration for Keap/Infusionsoft and Contact Form 7, WPFo

Share

EUVD-2026-35019 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy