CVE-2025-9052 | projectworlds Travel Management System 1.0 /updatepackage.php s1 sql injection

Inserito da Angelo Barbosa | Ago 14, 2025 | CVE

A vulnerability was found in projectworlds Travel Management System 1.0. It has been classified as critical. This affects an unknown part of the file /updatepackage.php. The manipulation of the argument s1 leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-9052. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-9052 | projectworlds Travel Management System 1.0 /updatepackage.php s1 sql injection

Post correlati

CVE-2025-0998 | Google Chrome 2024-12-31 V8 out-of-bounds

CVE-2025-5327 | chshcms mccms 2.7 Gf.php index pic server-side request forgery

CVE-2023-52950 | Synology Active Backup for Business Agent prior 2.7.0-3221 Login missing encryption (SA_24_11)

CVE-2024-0190 | RRJ Nueva Ecija Engineer Online Portal 1.0 Quiz add_quiz.php Quiz Title/Quiz Description cross site scripting