Vulnerabilities > CVE-2025-4890 - Out-of-bounds Write vulnerability in Fabianros Tourism Management System 1.0

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

fabianros

CWE-787

NVD

Published: 2025-05-18

Updated: 2025-05-21

Summary

A vulnerability was found in code-projects Tourism Management System 1.0 and classified as critical. This issue affects the function LoginUser of the component Login User. The manipulation of the argument username/password leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

Vulnerable Configurations

Part	Description	Count
Application	Fabianros Fabianros Tourism Management System 1.0	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/zzzxc643/cve/blob/main/Tourism-Management-System2.md
https://vuldb.com/?ctiid.309443
https://vuldb.com/?id.309443
https://vuldb.com/?submit.577499
https://code-projects.org/
https://github.com/zzzxc643/cve/blob/main/Tourism-Management-System2.md