CNNVD-202509-238 Information

CNNVD ID

CNNVD-202509-238

Related CVE

CVE-2025-9927

• CNNVD Published: 2025-09-03

Description (Chinese)

Projectworlds Travel management System是印度Projectworlds公司的一个差旅管理系统。 Projectworlds Travel management System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/viewpackage.php中参数t1的错误操作导致SQL注入攻击。

Description (English)

Projectworlds Travel Management System is a travel management system for Projectworlds, India. Projectworlds Travel Management System Version 1.0 contains an injection loophole in SQL, which results from an error of action on parameter t1 in file/viewpackage.php, resulting in an attack on SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Projectworlds

Published

2025-09-03

Last Modified

2026-02-24

References

https://github.com/JunGu-W/cve/issues/10 https://vuldb.com/?ctiid.322329 https://vuldb.com/?id.322329 https://vuldb.com/?submit.642583