CVE-2025-9154 | itsourcecode Online Tour and Travel Management System 1.0 /user/page-login.php email sql injection

Inserito da Angelo Barbosa | Ago 19, 2025 | CVE

A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /user/page-login.php. This manipulation of the argument email causes sql injection.

This vulnerability appears as CVE-2025-9154. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-9154 | itsourcecode Online Tour and Travel Management System 1.0 /user/page-login.php email sql injection

Post correlati

CVE-2025-8041 | Mozilla Firefox up to 140 on Android Address Bar clickjacking

CVE-2025-8522 | givanz Vvvebjs up to 2.0.4 node.js /save.php File path traversal (Issue 409)

CVE-2024-33302 | SourceCodester Product Show Room up to 1.0 Add Users Middle Name cross site scripting

VDB-290271 | Microsoft Azure Data Factory Apache Airflow access control