Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Online Tours \& Travels Management System Project Subscribe
Total 28 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-43061 1 Online Tours \& Travels Management System Project 1 Online Tours \& Travels Management System 2024-11-21 N/A 7.2 HIGH
Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /operations/travellers.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
CVE-2022-41537 1 Online Tours \& Travels Management System Project 1 Online Tours \& Travels Management System 2024-11-21 N/A 7.2 HIGH
Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /user_operations/profile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
CVE-2022-41416 1 Online Tours \& Travels Management System Project 1 Online Tours \& Travels Management System 2024-11-21 N/A 7.2 HIGH
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /user/update_booking.php.
CVE-2022-40354 1 Online Tours \& Travels Management System Project 1 Online Tours \& Travels Management System 2024-11-21 N/A 7.2 HIGH
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_booking.php.
CVE-2022-40353 1 Online Tours \& Travels Management System Project 1 Online Tours \& Travels Management System 2024-11-21 N/A 7.2 HIGH
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/up_booking.php.
CVE-2022-40352 1 Online Tours \& Travels Management System Project 1 Online Tours \& Travels Management System 2024-11-21 N/A 7.2 HIGH
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_traveller.php.
CVE-2022-40099 1 Online Tours \& Travels Management System Project 1 Online Tours \& Travels Management System 2024-11-21 N/A 7.2 HIGH
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_expense_category.php.
CVE-2022-40098 1 Online Tours \& Travels Management System Project 1 Online Tours \& Travels Management System 2024-11-21 N/A 7.2 HIGH
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_expense.php.

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024