Travel Management System Security Vulnerabilities and Issues — Travel Management System CVE List

Lucene search

ProjectworldsTravel Management System

4 matches found

CVE•added 2024/11/04 6:15 p.m.•48 views

CVE-2024-51326

SQL Injection vulnerability in projectworlds Travel management System v.1.0 allows a remote attacker to execute arbitrary code via the 't2' parameter in deletesubcategory.php.

7.5CVSS9AI score0.00196EPSS

CVE•added 2024/12/26 12:15 p.m.•45 views

CVE-2024-12950

A vulnerability was found in code-projects/projectworlds Travel Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /subcat.php. The manipulation of the argument catid leads to sql injection. The attack may be initiated remotely. The exploit ...

8.8CVSS7.3AI score0.00048EPSS

CVE•added 2024/11/04 6:15 p.m.•44 views

CVE-2024-51328

Cross Site Scripting vulnerability in addcategory.php in projectworld's Travel Management System v1.0 allows remote attacker to inject arbitrary code via the t2 parameter.

6.1CVSS7.1AI score0.00021EPSS

CVE•added 2024/11/04 6:15 p.m.•39 views

CVE-2024-51327

SQL Injection in loginform.php in ProjectWorld's Travel Management System v1.0 allows remote attackers to bypass authentication via SQL Injection in the 'username' and 'password' fields.

9.8CVSS8.7AI score0.00119EPSS