CVE-2025-9425 | itsourcecode Online Tour and Travel Management System 1.0 /enquiry.php pid sql injection

Inserito da Angelo Barbosa | Ago 25, 2025 | CVE

A vulnerability identified as critical has been detected in itsourcecode Online Tour and Travel Management System 1.0. Affected by this issue is some unknown functionality of the file /enquiry.php. Performing manipulation of the argument pid results in sql injection.

This vulnerability is reported as CVE-2025-9425. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2025-9425 | itsourcecode Online Tour and Travel Management System 1.0 /enquiry.php pid sql injection

Post correlati

CVE-2025-1964 | projectworlds Online Hotel Booking 1.0 booknow.php?roomname=Duplex checkin sql injection

CVE-2024-23192 | Open-Xchange OX App Suite up to 7.10.6-rev40/8.20 RSS Feed cross site scripting (adv-2024-0001)

CVE-2024-2013 | Hitachi Energy FOXMAN-UN/UNEM API Gateway authentication bypass

CVE-2024-0936 | van_der_Schaar LAB TemporAI 0.0.3 PKL File load_from_file deserialization