CNNVD-202508-1792 Information

Aug 15, 2025 cve

CNNVD ID

CNNVD-202508-1792

CVE-2025-8993

CNNVD Published: 2025-08-15

Description (Chinese)

itsourcecode Online Tour and Travel Management System是itsourcecode开源的一个在线旅游与旅行管理系统。 itsourcecode Online Tour and Travel Management System 1.0版本存在安全漏洞，该漏洞源于对文件/admin/expense_report.php中参数from_date的错误操作导致SQL注入。

Description (English)

Its sourcecode Online Tour and Travel Management System is an online tourism and travel management system open to access. There is a security loophole in version 1.0 of its sourcecode Online Tour and Travel Management System, which results from an error in the operation of the parameter from date in the document/admin/expense report.php.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

itsourcecode

Published

2025-08-15

Last Modified

2026-02-24

References

https://vuldb.com/?id.319989 https://github.com/lin-3-start/lin-cve/issues/1 https://vuldb.com/?submit.628788 https://vuldb.com/?ctiid.319989 https://itsourcecode.com/ https://access.redhat.com/security/cve/cve-2025-8993 https://nvd.nist.gov/vuln/detail/CVE-2025-8993

Share on: