CNNVD-202508-1853 Information

CNNVD ID

CNNVD-202508-1853

Related CVE

CVE-2025-9052

• CNNVD Published: 2025-08-15

Description (Chinese)

Projectworlds Travel management System是印度Projectworlds公司的一个差旅管理系统。 Projectworlds Travel management System 1.0版本存在注入漏洞，该漏洞源于文件/updatepackage.php中参数s1处理不当导致SQL注入。

Description (English)

Projectworlds Travel Management System is a travel management system for Projectworlds, India. Projectworlds Travel Management System Version 1.0 has an injection loophole, which stems from the mishandling of parameter s1 in document/updatepackage.php, resulting in SQL injection.

Hazard Level

Medium

Vulnerability Type

注入

Affected Vendor

Projectworlds

Published

2025-08-15

Last Modified

2026-02-24

References

https://github.com/guoma-book/CVE/issues/8 https://vuldb.com/?submit.632022 https://vuldb.com/?id.320271 https://vuldb.com/?ctiid.320271 https://access.redhat.com/security/cve/cve-2025-9052 https://nvd.nist.gov/vuln/detail/CVE-2025-9052