Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/11/17 11:13 a.m.10 views

CVE-2025-13247

A security flaw has been discovered in PHPGurukul Tourism Management System 1.0. The affected element is an unknown function of the file /admin/user-bookings.php. The manipulation of the argument uid results in sql injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS7.2AI score0.00342EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/16 12:30 p.m.7 views

EUVD-2025-197728

A security flaw has been discovered in PHPGurukul Tourism Management System 1.0. The affected element is an unknown function of the file /admin/user-bookings.php. The manipulation of the argument uid results in sql injection. It is possible to launch the attack remotely. The exploit has been...

7.5CVSS6.5AI score0.00342EPSS
Exploits1References6
OSV
OSV
added 2025/11/16 11:15 a.m.3 views

CVE-2025-13247

A security flaw has been discovered in PHPGurukul Tourism Management System 1.0. The affected element is an unknown function of the file /admin/user-bookings.php. The manipulation of the argument uid results in sql injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS5.7AI score
Exploits0References5
NVD
NVD
added 2025/11/16 11:15 a.m.13 views

CVE-2025-13247

A security flaw has been discovered in PHPGurukul Tourism Management System 1.0. The affected element is an unknown function of the file /admin/user-bookings.php. The manipulation of the argument uid results in sql injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS0.00342EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/16 10:32 a.m.4 views

CVE-2025-13247 PHPGurukul Tourism Management System user-bookings.php sql injection

A security flaw has been discovered in PHPGurukul Tourism Management System 1.0. The affected element is an unknown function of the file /admin/user-bookings.php. The manipulation of the argument uid results in sql injection. It is possible to launch the attack remotely. The exploit has been...

7.5CVSS7.2AI score0.00342EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/16 10:32 a.m.17 views

CVE-2025-13247 PHPGurukul Tourism Management System user-bookings.php sql injection

A security flaw has been discovered in PHPGurukul Tourism Management System 1.0. The affected element is an unknown function of the file /admin/user-bookings.php. The manipulation of the argument uid results in sql injection. It is possible to launch the attack remotely. The exploit has been...

7.5CVSS0.00342EPSS
Exploits1References5
CVE
CVE
added 2025/11/16 10:32 a.m.26 views

CVE-2025-13247

CVE-2025-13247 affects PHPGurukul Tourism Management System 1.0. The vulnerability is an SQL injection in an unknown function of the file /admin/user-bookings.php, caused by manipulation of the uid argument. It can be exploited remotely, and an exploit has been publicly released. Remediation guid...

9.8CVSS7.2AI score0.00342EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/11/16 12:0 a.m.5 views

PHPGurukul Tourism Management System SQL注入漏洞

PHPGurukul Tourism Management System is a website builder for tourism management from PHPGurukul. A SQL injection vulnerability exists in version 1.0 of the PHPGurukul Tourism Management System, which originates from an incorrect manipulation of the parameter uid in the file...

9.8CVSS7.7AI score0.00342EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/11/16 12:0 a.m.12 views

PT-2025-47082

Name of the Vulnerable Software and Affected Versions PHPGurukul Tourism Management System version 1.0 Description A security flaw exists in PHPGurukul Tourism Management System 1.0. The issue is related to SQL injection within an unknown function of the file /admin/user-bookings.php. Manipulatio...

9.8CVSS7.5AI score0.00342EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2025/05/23 8:23 a.m.6 views

CVE-2024-1822

A vulnerability classified as problematic has been found in PHPGurukul Tourism Management System 1.0. Affected is an unknown function of the file user-bookings.php. The manipulation of the argument Full Name leads to cross site scripting. It is possible to launch the attack remotely. The exploit...

6.1CVSS6.2AI score0.00424EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2024/08/02 12:0 a.m.468 views

Tourism Management System 2.0 Cross Site Scripting

Exploit Title: Tourism Management System v2.0 - Cross Site Scripting XSS Date: 13 July 2024 Exploit Author: Sampath kumar kadajari Vendor Homepage: https://phpgurukul.com/tourism-management-system-free-download/ Software Link: https://phpgurukul.com/?sdmprocessdownload=1&downloadid=7204 Version:...

7.4AI score0.00508EPSS
Exploits3
OSV
OSV
added 2024/02/23 4:15 p.m.5 views

CVE-2024-1822

A vulnerability classified as problematic has been found in PHPGurukul Tourism Management System 1.0. Affected is an unknown function of the file user-bookings.php. The manipulation of the argument Full Name leads to cross site scripting. It is possible to launch the attack remotely. The exploit...

6.1CVSS3.9AI score0.00424EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/02/23 12:0 a.m.5 views

Tourism Management System Cross-Site Scripting Vulnerability

Tourism Management System is an American website builder for tourism management. A cross-site scripting vulnerability exists in Tourism Management System version 1.0, which stems from the parameter Full Name in the file user-bookings.php that causes cross-site scripting...

6.1CVSS5.9AI score0.00424EPSS
Exploits0References4
NVD
NVD
added 2023/04/24 7:15 p.m.29 views

CVE-2023-1129

The WP FEvents Book WordPress plugin through 0.46 does not ensures that bookings to be updated belong to the user making the request, allowing any authenticated user to book, add notes, or cancel booking on behalf of other users...

6.5CVSS6.4AI score0.00555EPSS
Exploits2References1
Rows per page
Query Builder