26 matches found
CVE-2025-65132
The CVE-2025-65132 entry corresponds to a reflected Cross-Site Scripting (XSS) vulnerability in alandsilva26/hotel-management-php 1.0. The affected component is the admin-facing edit_room.php, where an attacker can inject and execute arbitrary JavaScript through the room_id GET parameter. This is...
EUVD-2022-34902
Malicious code in bioql PyPI...
CVE-2023-2565
A vulnerability has been found in SourceCodester Multi Language Hotel Management Software 1.0 and classified as problematic. This vulnerability affects unknown code of the file ajax.php of the component POST Parameter Handler. The manipulation of the argument complainttype with the input leads to...
CVE-2022-2648
A vulnerability was found in SourceCodester Multi Language Hotel Management Software. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument roomid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to...
Linux Distros Unpatched Vulnerability : CVE-2021-42949
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The component controllalogin function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass...
CVE-2023-2565
A vulnerability has been found in SourceCodester Multi Language Hotel Management Software 1.0 and classified as problematic. This vulnerability affects unknown code of the file ajax.php of the component POST Parameter Handler. The manipulation of the argument complainttype with the input...
Cross site scripting
A vulnerability has been found in SourceCodester Multi Language Hotel Management Software 1.0 and classified as problematic. This vulnerability affects unknown code of the file ajax.php of the component POST Parameter Handler. The manipulation of the argument complainttype with the input...
CVE-2023-2565
Summary of CVE-2023-2565 : A cross-site scripting vulnerability exists in SourceCodester Multi Language Hotel Management Software 1.0, specifically in the file ajax.php of the POST Parameter Handler. The vulnerability is triggered by manipulating the complaint_type parameter (e.g., using ), enabl...
Multi Language Hotel Management Software 跨站脚本漏洞
Multi Language Hotel Management Software is a multilingual hotel management software by Nikhil B Individual Developer. A cross-site scripting vulnerability exists in Multi Language Hotel Management Software version 1.0, which stems from a cross-site scripting vulnerability due to incorrect...
UBUNTU-CVE-2021-42948
HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id's...
CVE-2021-42948
CVE-2021-42948 affects HotelDruid Hotel Management Software, specifically version 3.0.3 and below. The root cause is exposure of session tokens in multiple links via GET parameters, enabling attackers to access user session IDs. The vulnerability impact is limited to session token disclosure with...
CVE-2021-42949
The component controllalogin function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass authentication via bruteforce attacks...
HotelDruid 授权问题漏洞
HotelDruid is a hotel management system by the Digitaldruid.net team. The system includes features such as room management, financial management and inventory management. HotelDruid Hotel Management Software version v3.0.3 suffers from an authorization issue vulnerability that stems from the...
CVE-2022-2656
A vulnerability classified as critical has been found in SourceCodester Multi Language Hotel Management Software. Affected is an unknown function. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...
Sql injection
A vulnerability classified as critical has been found in SourceCodester Multi Language Hotel Management Software. Affected is an unknown function. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...
CVE-2022-2656 SourceCodester Multi Language Hotel Management Software sql injection
A vulnerability classified as critical has been found in SourceCodester Multi Language Hotel Management Software. Affected is an unknown function. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...
CVE-2022-2656
CVE-2022-2656 affects SourceCodester Multi Language Hotel Management Software. Affects an unknown function where manipulating the email parameter triggers SQL injection, allowing remote exploitation. Multiple sources confirm a public exploit/disclosure; no patch/version details are provided in th...
CVE-2022-2648
A vulnerability was found in SourceCodester Multi Language Hotel Management Software. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument roomid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to...
CVE-2022-2648
CVE-2022-2648 affects SourceCodester Multi Language Hotel Management Software. The vulnerability is a SQL injection caused by manipulation of the argument room_id, enabling remote exploitation. Multiple connected sources confirm the issue and mention that the exploit has been disclosed publicly. ...
CVE-2022-2648 SourceCodester Multi Language Hotel Management Software sql injection
A vulnerability was found in SourceCodester Multi Language Hotel Management Software. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument roomid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to...