漏洞描述
itsourcecode Online Tour and Travel Management System是itsourcecode开源的一个在线旅游与旅行管理系统。 itsourcecode Online Tour and Travel Management System 1.0版本存在注入漏洞,该漏洞源于对文件/admin/operations/packages.php中参数pname的错误操作导致SQL注入。
itsourcecode Online Tour and Travel Management System 注入漏洞
PoC代码
暂无相关漏洞推荐
- 金和OA CrmSystemSet XXE漏洞
- 天锐绿盾审批系统 findOnlineUserForPage.do 信息泄露漏洞
- 金慧综合管理信息系统SystemName参数存在SQL注入漏洞
- Code-Projects Refugee Food Management System SQL注入漏洞
- CampCodes Supplier Management System SQL注入漏洞
- Code-Projects College Notes Uploading System SQL注入漏洞
- Code-Projects Assessment Management SQL注入漏洞
- itsourcecode在线蛋糕系统SQL注入漏洞(CVE-2025-15166)
- Online MCQ EXAM SQL注入漏洞
- itsourcecode学生管理系统SQL注入漏洞(CVE-2025-15077)
- itsourcecode Online Frozen Foods Ordering System SQL注入漏洞
- (CVE-2025-15011)Simple Stock System 1.0 logout.php SQL注入漏洞
- POC CVE-2021-4462: Employee Records System 1.0 - Unauthenticated File Upload RCE