CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/08/19 7:15 p.m.•3 views

CVE-2025-9153

A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. The attack can be launched remotely. The exploit ...

8.8CVSS0.00103EPSS

CVE•added 2025/08/19 7:2 p.m.•15 views

CVE-2025-9154

The CVE-2025-9154 entry concerns itsourcecode Online Tour and Travel Management System version 1.0. The vulnerability is a SQL injection in the file /user/page-login.php via manipulation of the email parameter, which can be exploited remotely. Multiple connected sources corroborate the flaw and i...

9.8CVSS7.6AI score0.00075EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/08/19 7:2 p.m.•7 views

CVE-2025-9154 itsourcecode Online Tour and Travel Management System page-login.php sql injection

7.5CVSS0.00075EPSS

Vulnrichment•added 2025/08/19 7:2 p.m.•2 views

CVE-2025-9154 itsourcecode Online Tour and Travel Management System page-login.php sql injection

7.5CVSS7.6AI score0.00075EPSS

Vulnrichment•added 2025/08/19 6:32 p.m.•3 views

CVE-2025-9153 itsourcecode Online Tour and Travel Management System travellers.php unrestricted upload

6.5CVSS7.4AI score0.00103EPSS

Cvelist•added 2025/08/19 6:32 p.m.•8 views

CVE-2025-9153 itsourcecode Online Tour and Travel Management System travellers.php unrestricted upload

6.5CVSS0.00103EPSS

CNNVD•added 2025/08/19 12:0 a.m.•1 views

itsourcecode Online Tour and Travel Management System 安全漏洞

itsourcecode Online Tour and Travel Management System is a itsourcecode open source online tour and travel management system. A security vulnerability exists in version 1.0 of itsourcecode Online Tour and Travel Management System, which is caused by a SQL injection due to incorrect manipulation o...

9.8CVSS7.7AI score0.00075EPSS

Exploits1References7

Positive Technologies•added 2025/08/19 12:0 a.m.•5 views

PT-2025-33859 · Itsourcecode · Sports Club Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Sports Management System version 1.0 Description: A SQL injection issue exists in itsourcecode Sports Management System version 1.0. The issue is located in an unknown function within the /Admin/sports.php file. Manipulation of t...

9.8CVSS8.6AI score0.00072EPSS

Exploits1References8

CNNVD•added 2025/08/19 12:0 a.m.•1 views

itsourcecode Online Tour and Travel Management System 安全漏洞

8.8CVSS6.8AI score0.00103EPSS

Exploits1References7

Positive Technologies•added 2025/08/19 12:0 a.m.•4 views

PT-2025-33846 · Itsourcecode · Itsourcecode Online Tour/Travel Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Tour and Travel Management System version 1.0 Description: A vulnerability exists in itsourcecode Online Tour and Travel Management System that allows for unrestricted file upload. The issue affects unknown code within the...

8.8CVSS7.1AI score0.00103EPSS

Exploits1References8

CNNVD•added 2025/08/19 12:0 a.m.•1 views

itsourcecode Online Tour and Travel Management System 注入漏洞

itsourcecode Online Tour and Travel Management System is itsourcecode open source an online tour and travel management system. An injection vulnerability exists in version 1.0 of itsourcecode Online Tour and Travel Management System, which originates from a SQL injection due to incorrect...

9.8CVSS7.8AI score0.00075EPSS

Exploits1References7

Positive Technologies•added 2025/08/19 12:0 a.m.•3 views

PT-2025-33856 · Itsourcecode · Itsourcecode Online Tour/Travel Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Tour and Travel Management System version 1.0 Description: A flaw exists in the processing of the /user/page-login.php file within the itsourcecode Online Tour and Travel Management System. Manipulation of the email argume...

9.8CVSS7.8AI score0.00075EPSS

Exploits1References9

RedhatCVE•added 2025/08/17 4:6 a.m.•7 views

CVE-2025-9008

A vulnerability was identified in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /admin/smssetting.php. The manipulation of the argument uname leads to sql injection. The attack may be initiated remotely. The exploit has been...

RedhatCVE•added 2025/08/16 10:28 p.m.•5 views

CVE-2025-8984

A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Affected is an unknown function of the file /admin/operations/expensecategory.php. The manipulation of the argument expensename leads to sql injection. It is possible to launch the attack remotely. The...

RedhatCVE•added 2025/08/16 9:25 p.m.•3 views

CVE-2025-8983

A vulnerability was identified in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /admin/operations/expense.php. The manipulation of the argument expensefor leads to sql injection. The attack may be initiated remotely. The exploit...

RedhatCVE•added 2025/08/16 5:25 p.m.•3 views

CVE-2025-8970

A vulnerability was found in itsourcecode Online Tour and Travel Management System 1.0. This affects an unknown part of the file /admin/operations/booking.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...

RedhatCVE•added 2025/08/16 5:25 p.m.•2 views

CVE-2025-8969

A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/approveuser.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has be...