CNNVD-202509-237 Information

CNNVD ID

CNNVD-202509-237

Related CVE

CVE-2025-9928

• CNNVD Published: 2025-09-03

Description (Chinese)

Projectworlds Travel management System是印度Projectworlds公司的一个差旅管理系统。 Projectworlds Travel management System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/viewcategory.php中参数t1的错误操作导致SQL注入攻击。

Description (English)

Projectworlds Travel Management System is a travel management system for Projectworlds, India. Projectworlds Travel Management System Version 1.0 contains an injection loophole in SQL, which originated from an error in the t1 parameter in document/viewcategory.php, resulting in an attack on SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Projectworlds

Published

2025-09-03

Last Modified

2026-02-24

References

https://github.com/JunGu-W/cve/issues/11 https://vuldb.com/?ctiid.322330 https://vuldb.com/?id.322330 https://vuldb.com/?submit.642587