Online tours & travels management system
This hub aggregates every CVE we track for Online tours & travels management system, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.
35
CVEs tracked
2
Critical
9
High
0
In CISA KEV
Severity distribution
MEDIUM23HIGH9CRITICAL2LOW1
Monthly trend
1
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Online tours & travels management system.
- CVE-2024-48411itsourcecode Online Tours and Travels Management System v1.0 is vulnerable to SQL Injection (SQLI) via a crafted payload to the val-email parameter in forget_password.php.9.8
- CVE-2024-6471SourceCodester Online Tours & Travels Management sms_setting.php sql injection6.3
- CVE-2024-2168SourceCodester Online Tours & Travels Management System HTTP POST Request expense_category.php sql injection4.7
- CVE-2024-0884SourceCodester Online Tours & Travels Management System payment.php exec sql injection4.7
- CVE-2024-0883SourceCodester Online Tours & Travels Management System pay.php prepare sql injection6.3
- CVE-2024-0735SourceCodester Online Tours & Travels Management System expense.php exec sql injection6.3
- CVE-2023-6765SourceCodester Online Tours & Travels Management System email_setup.php prepare sql injection5.5
- CVE-2023-4866SourceCodester Online Tours & Travels Management System booking.php exec sql injection6.3
- CVE-2023-2619SourceCodester Online Tours & Travels Management System disapprove_delete.php exec sql injection6.3
- CVE-2023-1590SourceCodester Online Tours & Travels Management System currency.php exec sql injection6.3
- CVE-2023-1589SourceCodester Online Tours & Travels Management System approve_delete.php exec sql injection6.3
- CVE-2023-1396SourceCodester Online Tours & Travels Management System traveller_details.php cross site scripting3.5
- CVE-2023-1391SourceCodester Online Tours & Travels Management System ab.php unrestricted upload4.7
- CVE-2023-0570SourceCodester Online Tours & Travels Management System payment_operation.php sql injection6.3
- CVE-2023-0561SourceCodester Online Tours & Travels Management System s.php sql injection6.3
Product normalization is registry-driven with AI assist and human review. How it works