Online Tour & Travel Management System
Approved changes feed: RSS · Atom
cpe:2.3:a:mayurik:online_tour_\&_travel_management_system:1.0:*:*:*:*:*:*:*
part: a version: 1.0 update: *
| Vendor | Mayurik (727a23cf-b3c3-54bf-b09e-da411a18e16c) |
|---|---|
| Product | Online Tour & Travel Management System (5569d627-4239-58d2-9ee2-935d0c6f62e9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-9426 |
vulnerable | 2026-06-03 15:13:46.463862 |
itsourcecode Online Tour and Travel Management System package.php sql injection
HIGH (7.3)
A weakness has been identified in itsourcecode Online Tour and Travel Management System 1.0. This affects an unknown part of the file /package.php. Executing manipulation of the argument subcatid can lead to sql injection. The attack may be performed from a remote location. The exploit has been made available to the public and could be exploited.
Published: 2025-08-25T23:02:10.901Z
Updated: 2025-08-26T20:21:02.956Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-9425 |
vulnerable | 2026-06-03 15:13:46.463286 |
itsourcecode Online Tour and Travel Management System enquiry.php sql injection
HIGH (7.3)
A security flaw has been discovered in itsourcecode Online Tour and Travel Management System 1.0. Affected by this issue is some unknown functionality of the file /enquiry.php. Performing manipulation of the argument pid results in sql injection. The attack is possible to be carried out remotely. The exploit has been released to the public and may be exploited.
Published: 2025-08-25T23:02:07.942Z
Updated: 2025-08-26T14:22:34.897Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-9155 |
vulnerable | 2026-06-03 15:13:45.577387 |
itsourcecode Online Tour and Travel Management System forget_password.php sql injection
HIGH (7.3)
A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Impacted is an unknown function of the file /user/forget_password.php. Such manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-19T19:32:07.042Z
Updated: 2025-08-19T19:45:32.987Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-9154 |
vulnerable | 2026-06-03 15:13:45.577026 |
itsourcecode Online Tour and Travel Management System page-login.php sql injection
HIGH (7.3)
A flaw has been found in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /user/page-login.php. This manipulation of the argument email causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used.
Published: 2025-08-19T19:02:06.287Z
Updated: 2025-08-19T19:25:28.580Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-9153 |
vulnerable | 2026-06-03 15:13:45.576638 |
itsourcecode Online Tour and Travel Management System travellers.php unrestricted upload
MEDIUM (6.3)
A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. The attack can be launched remotely. The exploit is now public and may be used.
Published: 2025-08-19T18:32:08.442Z
Updated: 2025-08-19T19:24:56.741Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-9010 |
vulnerable | 2026-06-03 15:13:45.247888 |
itsourcecode Online Tour and Travel Management System booking_report.php sql injection
HIGH (7.3)
A vulnerability was found in itsourcecode Online Tour and Travel Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/booking_report.php. The manipulation of the argument from_date leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-15T04:32:09.058Z
Updated: 2025-08-15T12:20:27.604Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-9009 |
vulnerable | 2026-06-03 15:13:45.247483 |
itsourcecode Online Tour and Travel Management System email_setup.php sql injection
HIGH (7.3)
A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Affected is an unknown function of the file /admin/email_setup.php. The manipulation of the argument Name leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-15T04:32:06.752Z
Updated: 2025-08-18T18:19:59.653Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-9008 |
vulnerable | 2026-06-03 15:13:45.242695 |
itsourcecode Online Tour and Travel Management System sms_setting.php sql injection
HIGH (7.3)
A vulnerability was identified in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /admin/sms_setting.php. The manipulation of the argument uname leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-15T04:02:06.016Z
Updated: 2025-08-15T16:17:13.774Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8993 |
vulnerable | 2026-06-03 15:13:45.214526 |
itsourcecode Online Tour and Travel Management System expense_report.php sql injection
HIGH (7.3)
A vulnerability was found in itsourcecode Online Tour and Travel Management System 1.0. This affects an unknown part of the file /admin/expense_report.php. The manipulation of the argument from_date leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-15T01:05:09.063Z
Updated: 2025-08-15T12:49:22.212Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8984 |
vulnerable | 2026-06-03 15:13:45.210871 |
itsourcecode Online Tour and Travel Management System expense_category.php sql injection
HIGH (7.3)
A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Affected is an unknown function of the file /admin/operations/expense_category.php. The manipulation of the argument expense_name leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T21:32:06.368Z
Updated: 2025-08-15T12:52:11.600Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8983 |
vulnerable | 2026-06-03 15:13:45.210391 |
itsourcecode Online Tour and Travel Management System expense.php sql injection
HIGH (7.3)
A vulnerability was identified in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /admin/operations/expense.php. The manipulation of the argument expense_for leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T21:02:06.839Z
Updated: 2025-08-15T12:52:44.827Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8982 |
vulnerable | 2026-06-03 15:13:45.209919 |
itsourcecode Online Tour and Travel Management System currency.php sql injection
HIGH (7.3)
A vulnerability was determined in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/currency.php. The manipulation of the argument curr_code leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T20:32:07.143Z
Updated: 2025-08-14T20:47:18.592Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8981 |
vulnerable | 2026-06-03 15:13:45.209323 |
itsourcecode Online Tour and Travel Management System payment.php sql injection
HIGH (7.3)
A vulnerability was found in itsourcecode Online Tour and Travel Management System 1.0. This affects an unknown part of the file /admin/operations/payment.php. The manipulation of the argument payment_type leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T20:02:06.015Z
Updated: 2025-08-14T20:11:40.969Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8972 |
vulnerable | 2026-06-03 15:13:45.189489 |
itsourcecode Online Tour and Travel Management System page-login.php sql injection
HIGH (7.3)
A vulnerability was identified in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /admin/page-login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T17:32:06.466Z
Updated: 2025-08-14T17:56:05.087Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8971 |
vulnerable | 2026-06-03 15:13:45.189062 |
itsourcecode Online Tour and Travel Management System travellers.php sql injection
HIGH (7.3)
A vulnerability was determined in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument val-username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T17:02:08.900Z
Updated: 2025-08-14T17:27:49.874Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8970 |
vulnerable | 2026-06-03 15:13:45.188618 |
itsourcecode Online Tour and Travel Management System booking.php sql injection
HIGH (7.3)
A vulnerability was found in itsourcecode Online Tour and Travel Management System 1.0. This affects an unknown part of the file /admin/operations/booking.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T17:02:06.563Z
Updated: 2025-08-14T17:58:59.047Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8969 |
vulnerable | 2026-06-03 15:13:45.188021 |
itsourcecode Online Tour and Travel Management System approve_user.php sql injection
HIGH (7.3)
A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/approve_user.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T16:32:08.662Z
Updated: 2025-08-14T18:22:20.734Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8968 |
vulnerable | 2026-06-03 15:13:45.187654 |
itsourcecode Online Tour and Travel Management System disapprove_user.php sql injection
HIGH (7.3)
A vulnerability was identified in itsourcecode Online Tour and Travel Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/disapprove_user.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T16:32:06.273Z
Updated: 2025-08-14T19:18:32.525Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8967 |
vulnerable | 2026-06-03 15:13:45.187257 |
itsourcecode Online Tour and Travel Management System packages.php sql injection
HIGH (7.3)
A vulnerability was determined in itsourcecode Online Tour and Travel Management System 1.0. Affected is an unknown function of the file /admin/operations/packages.php. The manipulation of the argument pname leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T16:02:06.735Z
Updated: 2025-08-14T18:24:53.166Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-8966 |
vulnerable | 2026-06-03 15:13:45.186577 |
itsourcecode Online Tour and Travel Management System tax.php sql injection
HIGH (7.3)
A vulnerability was found in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /admin/operations/tax.php. The manipulation of the argument tname leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-08-14T15:32:08.404Z
Updated: 2025-08-14T17:49:53.051Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.