CNNVD-202509-247 Information

CNNVD ID

CNNVD-202509-247

Related CVE

CVE-2025-9924

• CNNVD Published: 2025-09-03

Description (Chinese)

Projectworlds Travel management System是印度Projectworlds公司的一个差旅管理系统。 Projectworlds Travel management System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/enquiry.php中参数t2的错误操作导致SQL注入攻击。

Description (English)

Projectworlds Travel Management System is a travel management system for Projectworlds, India. Projectworlds Travel Management System Version 1.0 contains an injection loophole in SQL, which originated from an error in the t2 parameter in the document/enquiry.php resulting in an attack on SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Projectworlds

Published

2025-09-03

Last Modified

2026-02-24

References

https://github.com/JunGu-W/cve/issues/7 https://vuldb.com/?ctiid.322326 https://vuldb.com/?id.322326 https://vuldb.com/?submit.642578