| Title | PHPGurukul Tourism Management System V1.0 Unrestricted Upload |
|---|
| Description | The package creation feature contains a critical file upload vulnerability that allows authenticated attackers to upload malicious PHP files due to complete lack of validation. This can lead to complete system compromise through remote code execution. |
|---|
| Source | ⚠️ https://github.com/ltranquility/CVE/issues/4 |
|---|
| User | Customer (UID 83474) |
|---|
| Submission | 06/14/2025 11:10 (10 months ago) |
|---|
| Moderation | 06/19/2025 12:32 (5 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 260918 [PHPGurukul Tourism Management System 2.0 create-package.php unrestricted upload] |
|---|
| Points | 0 |
|---|