VYPR
Unrated severityNVD Advisory· Published Dec 26, 2024· Updated May 18, 2025

code-projects/projectworlds Travel Management System subcat.php sql injection

CVE-2024-12950

Description

A vulnerability was found in code-projects/projectworlds Travel Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /subcat.php. The manipulation of the argument catid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Affected products

3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.