CNNVD-202508-2904 Information

Aug 25, 2025 cve

CNNVD ID

CNNVD-202508-2904

CVE-2025-9425

CNNVD Published: 2025-08-25

Description (Chinese)

itsourcecode Online Tour and Travel Management System是itsourcecode开源的一个在线旅游与旅行管理系统。 itsourcecode Online Tour and Travel Management System 1.0版本存在安全漏洞，该漏洞源于对文件/enquiry.php中参数pid的错误操作导致SQL注入。

Description (English)

Its sourcecode Online Tour and Travel Management System is an online tourism and travel management system open to access. There is a security loophole in version 1.0 of its sourcecode Online Tour and Travel Management System, which results from an error in the ped parameter in the document/enquiry.php, resulting in the injection of SQL.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

itsourcecode

Published

2025-08-25

Last Modified

2026-02-24

References

https://vuldb.com/?submit.634149 https://vuldb.com/?id.321268 https://vuldb.com/?ctiid.321268 https://itsourcecode.com/ https://github.com/shq3526/cve/issues/6 https://nvd.nist.gov/vuln/detail/CVE-2025-9425

Share on: