cvedb.io
CVE-2025-57642
HIGH · CVSS 7.2
EPSS exploitation probability: 0%
Published 2025-09-10T17:15:33.700 · Last modified 2026-06-17T09:43:16.633

Summary

A Shell Upload vulnerability in Tourism Management System 2.0 allows an attacker to upload and execute arbitrary PHP shell scripts on the server, leading to remote code execution and unauthorized access to the system. This can result in the compromise of sensitive data and system functionality.

Affected products

sohamjuhin — tourism_management_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when sohamjuhin ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.