Projectworlds Travel_management_system
14 CVEs affecting Projectworlds Travel_management_system. Latest disclosed: 2025-09-03. Critical: 2, High: 10.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-51327 | Critical | 9.8 | 2024-11-04 | SQL Injection in loginform.php in ProjectWorld's Travel Management System v1.0 allows remote attackers to bypass authentication via SQL Injection in the 'usern… |
CVE-2020-24203 | Critical | 9.8 | 2020-08-27 | Insecure File Permissions and Arbitrary File Upload in the upload pic function in updatesubcategory.php in Projects World Travel Management System v1.0 allows… |
CVE-2024-51326 | High | 7.5 | 2024-11-04 | SQL Injection vulnerability in projectworlds Travel management System v.1.0 allows a remote attacker to execute arbitrary code via the 't2' parameter in delete… |
CVE-2025-9928 | High | 7.3 | 2025-09-03 | A security flaw has been discovered in projectworlds Travel Management System 1.0. The impacted element is an unknown function of the file /viewcategory.php. P… |
CVE-2025-9927 | High | 7.3 | 2025-09-03 | A vulnerability was identified in projectworlds Travel Management System 1.0. The affected element is an unknown function of the file /viewpackage.php. Such ma… |
CVE-2025-9926 | High | 7.3 | 2025-09-03 | A vulnerability was determined in projectworlds Travel Management System 1.0. Impacted is an unknown function of the file /viewsubcategory.php. This manipulati… |
CVE-2025-9925 | High | 7.3 | 2025-09-03 | A vulnerability was found in projectworlds Travel Management System 1.0. This issue affects some unknown processing of the file /detail.php. The manipulation o… |
CVE-2025-9924 | High | 7.3 | 2025-09-03 | A vulnerability has been found in projectworlds Travel Management System 1.0. This vulnerability affects unknown code of the file /enquiry.php. The manipulatio… |
CVE-2025-9053 | High | 7.3 | 2025-08-15 | A vulnerability has been found in projectworlds Travel Management System 1.0. This vulnerability affects unknown code of the file /updatesubcategory.php. The m… |
CVE-2025-9052 | High | 7.3 | 2025-08-15 | A vulnerability was identified in projectworlds Travel Management System 1.0. This affects an unknown part of the file /updatepackage.php. The manipulation of… |
CVE-2025-9051 | High | 7.3 | 2025-08-15 | A vulnerability was determined in projectworlds Travel Management System 1.0. Affected by this issue is some unknown functionality of the file /updatecategory… |
CVE-2025-9050 | High | 7.3 | 2025-08-15 | A vulnerability was found in projectworlds Travel Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /addcategory.ph… |
CVE-2024-51328 | Medium | 6.1 | 2024-11-04 | Cross Site Scripting vulnerability in addcategory.php in projectworld's Travel Management System v1.0 allows remote attacker to inject arbitrary code via the t… |
CVE-2020-29205 | Medium | 6.1 | 2021-05-17 | XSS in signup form in Project Worlds Online Examination System 1.0 allows remote attacker to inject arbitrary code via the name field |