CVE-2022-28607 | asith-eranga ISIC Tour Booking controller.php action information disclosure (EUVD-2022-33049)
A vulnerability, which was classified as problematic, was found in asith-eranga ISIC Tour Booking. This issue affects some unknown processing of the file /system/user/modules/mod_users/controller.php. Executing a manipulation of the argument action can lead to information disclosure.
This vulnerability is handled as CVE-2022-28607. The attack can be executed remotely. There is not any exploit available.