CNNVD-202508-1678 Information
CNNVD ID
CNNVD-202508-1678
Related CVE
- CNNVD Published: 2025-08-14
Description (Chinese)
itsourcecode Online Tour and Travel Management System是itsourcecode开源的一个在线旅游与旅行管理系统。 itsourcecode Online Tour and Travel Management System 1.0版本存在注入漏洞,该漏洞源于对文件/admin/operations/packages.php中参数pname的错误操作导致SQL注入。
Description (English)
Its sourcecode Online Tour and Travel Management System is an online tourism and travel management system open to access. There is an injection loophole in version 1.0 of its sourcecode Online Tour and Travel Management System, which results from a mishandling of the parameter pname in the document/admin/operations/packages.php.
Hazard Level
Medium
Vulnerability Type
注入
Affected Vendor
itsourcecode
Published
2025-08-14
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.319962 https://vuldb.com/?submit.628163 https://github.com/zzb1388/cve/issues/36 https://vuldb.com/?id.319962 https://itsourcecode.com/ https://nvd.nist.gov/vuln/detail/CVE-2025-8967
Share on: