Vulnerabilities > Online Tours AND Travels Management System Project > Online Tours AND Travels Management System > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-07	CVE-2022-43050	Unrestricted Upload of File with Dangerous Type vulnerability in Online Tours and Travels Management System Project Online Tours and Travels Management System 1.0 Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability in the component update_profile.php. network low complexity online-tours-and-travels-management-system-project CWE-434	7.2
2022-10-17	CVE-2022-42142	Unspecified vulnerability in Online Tours and Travels Management System Project Online Tours and Travels Management System 1.0 Online Tours & Travels Management System v1.0 is vulnerable to Arbitrary code execution via ip/tour/admin/operations/update_settings.php. network low complexity online-tours-and-travels-management-system-project	7.2
2022-06-15	CVE-2022-32992	SQL Injection vulnerability in Online Tours and Travels Management System Project Online Tours and Travels Management System 1.0 Online Tours And Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the tname parameter at /admin/operations/tax.php. network low complexity online-tours-and-travels-management-system-project CWE-89	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.