CVE-2025-9050
Projectworlds Travel Management System 1.0 has a SQL injection in /addcategory.php caused by manipulating the t1 parameter. The vulnerability is remote-exploitable and the exploit has been publicly disclosed. Several connected sources confirm the affected file and parameter but do not provide a c...