cbcvebase.

Ashraf-Kabir Travel-Agency vulnerabilities

3 known vulnerabilities affecting ashraf-kabir/travel-agency.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1

Vulnerabilities

Page 1 of 1
CVE-2025-13544P2CRITICALCVSS 9.8≤ 2025-07-05v1f25aa03544bc5fb7a9e846f8a7879cecdb0cad32025-11-23
CVE-2025-13544 [CRITICAL] CWE-284 CVE-2025-13544: A weakness has been identified in ashraf-kabir travel-agency up to 1f25aa03544bc5fb7a9e846f8a7879cec A weakness has been identified in ashraf-kabir travel-agency up to 1f25aa03544bc5fb7a9e846f8a7879cecdb0cad3. Affected is an unknown function of the file /customer_register.php. Executing manipulation can lead to unrestricted upload. It is possible to launch the attack remotely. The exploit has been made available to the public and could be exploit
nvd
CVE-2025-13546P3CRITICALCVSS 9.8≤ 2025-07-05v1f25aa03544bc5fb7a9e846f8a7879cecdb0cad32025-11-23
CVE-2025-13546 [CRITICAL] CWE-74 CVE-2025-13546: A vulnerability was detected in ashraf-kabir travel-agency up to 1f25aa03544bc5fb7a9e846f8a7879cecdb A vulnerability was detected in ashraf-kabir travel-agency up to 1f25aa03544bc5fb7a9e846f8a7879cecdb0cad3. Affected by this issue is some unknown functionality of the file /results.php of the component Search. The manipulation of the argument user_query results in sql injection. The attack can be launched remotely. The exploit is now public and may
nvd
CVE-2025-13545P3HIGHCVSS 7.2≤ 2025-07-05v1f25aa03544bc5fb7a9e846f8a7879cecdb0cad32025-11-23
CVE-2025-13545 [HIGH] CWE-74 CVE-2025-13545: A security vulnerability has been detected in ashraf-kabir travel-agency up to 1f25aa03544bc5fb7a9e8 A security vulnerability has been detected in ashraf-kabir travel-agency up to 1f25aa03544bc5fb7a9e846f8a7879cecdb0cad3. Affected by this vulnerability is an unknown functionality of the file /admin_area/index.php. The manipulation of the argument edit_pack leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed pub
nvd
Ashraf-Kabir Travel-Agency vulnerabilities | cvebase