Share:

CVE-2021-25213 - Travel Management System Project Travel Management System

July 22, 2021

Critical 9.8

SQL injection vulnerability in SourceCodester Travel Management System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the catid parameter to subcat.php.

Affected software

Travel Management System Project Travel Management System

Reference links

https://github.com/BigTiger2020/Travel-Management-System/blob/main/Travel%20Management%20System-sql.md

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.