Online Tours & Travels Management System

online_tours_&_travels_management_system

Vendor: Online Tours & Travels Management System Project • 28 CVEs

CVEs (28)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-43061 1Online Tours & Travels Management System Project 1Online Tours & Travels Management System May 5, 2025 Nov 3, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /operations/travellers.php. This vulnerability allows attackers to execute arbitrary code vi...Show more Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /operations/travellers.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.Show less
CVE-2022-41537 1Online Tours & Travels Management System Project 1Online Tours & Travels Management System May 15, 2025 Oct 18, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /user_operations/profile.php. This vulnerability allows attackers to execute arbitrary code...Show more Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /user_operations/profile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.Show less
CVE-2022-41416 1Online Tours & Travels Management System Project 1Online Tours & Travels Management System May 14, 2025 Oct 14, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /user/update_booking.php.
CVE-2022-40354 1Online Tours & Travels Management System Project 1Online Tours & Travels Management System May 21, 2025 Sep 27, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_booking.php.
CVE-2022-40353 1Online Tours & Travels Management System Project 1Online Tours & Travels Management System May 22, 2025 Sep 27, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/up_booking.php.
CVE-2022-40352 1Online Tours & Travels Management System Project 1Online Tours & Travels Management System May 22, 2025 Sep 27, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_traveller.php.
CVE-2022-40099 1Online Tours & Travels Management System Project 1Online Tours & Travels Management System May 21, 2025 Sep 26, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_expense_category.php.
CVE-2022-40098 1Online Tours & Travels Management System Project 1Online Tours & Travels Management System May 21, 2025 Sep 26, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_expense.php.

Previous 12