Travel Management System /updatesubcategory.php File SQL Injection Vulnerability

Travel Management System is a travel management system. Travel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameters t1/s1 in file /updatesubcategory.php. An attacker can exploit this vulnerabili...

CVE-2025-9053

A vulnerability has been found in projectworlds Travel Management System 1.0. This vulnerability affects unknown code of the file /updatesubcategory.php. The manipulation of the argument t1/s1 leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the publ...

Projectworlds Travel management System 注入漏洞

Travel Management System is a travel management system. Travel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameters t1/s1 in file /updatesubcategory.php. An attacker can exploit this vulnerabili...

CVE-2020-24203

The CVE-2020-24203 issue affects Projects World Travel Management System v1.0, specifically the updatesubcategory.php upload pic function. The root cause is insecure file permissions combined with an arbitrary file upload, allowing remote unauthenticated attackers to gain remote code execution. E...