VYPR

Online Tours and Travels Management System

by Itsourcecode

CVEs (22)

  • CVE-2025-9153MedAug 19, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. The attack can be launched…

  • CVE-2024-46077MedOct 4, 2024
    risk 0.35cvss 5.4epss 0.00

    itsourcecode Online Tours and Travels Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the val-username, val-email, val-suggestions, val-digits and state_name parameters in travellers.php.

Page 2 of 2