CNNVD-202508-2208 Information

Aug 19, 2025 cve

CNNVD ID

CNNVD-202508-2208

CVE-2025-9153

CNNVD Published: 2025-08-19

Description (Chinese)

itsourcecode Online Tour and Travel Management System是itsourcecode开源的一个在线旅游与旅行管理系统。 itsourcecode Online Tour and Travel Management System 1.0版本存在安全漏洞，该漏洞源于对文件/admin/operations/travellers.php中参数photo的错误操作导致无限制上传。

Description (English)

Its sourcecode Online Tour and Travel Management System is an online tourism and travel management system open to access. There is a security loophole in version 1.0 of its sourcecode Online Tour and Travel Management System, which results from an unrestricted upload as a result of an error in the parameters photo in the document/admin/operations/travellers.php.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

itsourcecode

Published

2025-08-19

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.320533 https://vuldb.com/?submit.630200 https://github.com/HjsCS/CVE/issues/4 https://vuldb.com/?id.320533 https://itsourcecode.com/ https://nvd.nist.gov/vuln/detail/CVE-2025-9153 https://access.redhat.com/security/cve/cve-2025-9153

Share on: