23 matches found
EUVD-2025-25207
Malicious code in bioql PyPI...
EUVD-2025-24869
Malicious code in bioql PyPI...
CVE-2025-9153
A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. The attack can be launched remotely. The exploit ...
CVE-2025-9153
A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. The attack can be launched remotely. The exploit ...
CVE-2025-9153 itsourcecode Online Tour and Travel Management System travellers.php unrestricted upload
A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. The attack can be launched remotely. The exploit ...
CVE-2025-9153
CVE-2025-9153 affects the itsourcecode Online Tour and Travel Management System v1.0. The vulnerability is in the file /admin/operations/travellers.php where the photo parameter can be manipulated to achieve an unrestricted file upload. This is described as a remote, publicly exploitable issue. M...
CVE-2025-9153 itsourcecode Online Tour and Travel Management System travellers.php unrestricted upload
A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. The attack can be launched remotely. The exploit ...
PT-2025-33846 · Itsourcecode · Itsourcecode Online Tour/Travel Management System
Name of the Vulnerable Software and Affected Versions: itsourcecode Online Tour and Travel Management System version 1.0 Description: A vulnerability exists in itsourcecode Online Tour and Travel Management System that allows for unrestricted file upload. The issue affects unknown code within the...
CVE-2025-8971
A vulnerability was determined in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument val-username leads to sql injection. The attack can be initiated remotely. The exploi...
Exploit for SQL Injection in Mayurik Online_Tour_\&_Travel_Management_System
CVE-2025-8971 SQL Injection Author: Byte Reaper Des...
Online Tour and Travel Management System 1.0 SQL Injection
Online Tour and Travel Management System version 1.0 suffers from a remote SQL injection vulnerability in the /admin/operations/travellers.php endpoint...
CVE-2025-8971
A vulnerability was determined in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument val-username leads to sql injection. The attack can be initiated remotely. The exploi...
CVE-2025-8971 itsourcecode Online Tour and Travel Management System travellers.php sql injection
A vulnerability was determined in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument val-username leads to sql injection. The attack can be initiated remotely. The exploi...
CVE-2025-8971
CVE-2025-8971 affects itsourcecode Online Tour and Travel Management System 1.0, with a SQL injection in /admin/operations/travellers.php via the val-username parameter. Exploitation is remote and publicly disclosed; a related exploit repo shows remote code execution via file upload after injecti...
itsourcecode Online Tour and Travel Management System 注入漏洞
itsourcecode Online Tour and Travel Management System is itsourcecode open source an online tour and travel management system. An injection vulnerability exists in version 1.0 of itsourcecode Online Tour and Travel Management System, which originates from a SQL injection due to incorrect...
CVE-2024-46077
itsourcecode Online Tours and Travels Management System v1.0 is vulnerable to Cross Site Scripting XSS via a crafted payload to the val-username, val-email, val-suggestions, val-digits and statename parameters in travellers.php...
CVE-2024-46077
itsourcecode Online Tours and Travels Management System v1.0 is vulnerable to Cross Site Scripting XSS via a crafted payload to the val-username, val-email, val-suggestions, val-digits and statename parameters in travellers.php...
PT-2024-31896 · Unknown · Sourcecodester Online Tours & Travels Management System
Name of the Vulnerable Software and Affected Versions: itsourcecode Online Tours and Travels Management System version 1.0 Description: The issue is related to Cross Site Scripting XSS that can be triggered by sending a crafted payload to specific parameters in the travellers.php file. The...
CVE-2024-46077
itsourcecode Online Tours and Travels Management System v1.0 is vulnerable to Cross Site Scripting XSS via a crafted payload to the val-username, val-email, val-suggestions, val-digits and statename parameters in travellers.php...
travellersinndawsoncreek.net Cross Site Scripting vulnerability OBB-3669251
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...