Phpgurukul Tourism Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Phpgurukul Tourism Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2024-32254 — CVSS 8.8 (high): Phpgurukul Tourism Management System v2.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via tms/admin/create-package.php…
CVE-2020-28136 — CVSS 8.8 (high): An Arbitrary File Upload is discovered in SourceCodester Tourism Management System 1.0 allows the user to conduct remote code execution via…
CVE-2024-32256 — CVSS 8.1 (high): Phpgurukul Tourism Management System v2.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via /tms/admin/change-image.php…
CVE-2025-13247 — CVSS 7.3 (high): A security flaw has been discovered in PHPGurukul Tourism Management System 1.0. The affected element is an unknown function of the file…
CVE-2024-41333 — CVSS 6.1 (medium): A reflected cross-site scripting (XSS) vulnerability in Phpgurukul Tourism Management System v2.0 allows attackers to execute arbitrary…
CVE-2024-1822 — CVSS 2.4 (low): A vulnerability classified as problematic has been found in PHPGurukul Tourism Management System 1.0. Affected is an unknown function of…