Lucene search
K

26 matches found

CVE
CVE
added 2026/04/14 12:0 a.m.8 views

CVE-2025-65132

The CVE-2025-65132 entry corresponds to a reflected Cross-Site Scripting (XSS) vulnerability in alandsilva26/hotel-management-php 1.0. The affected component is the admin-facing edit_room.php, where an attacker can inject and execute arbitrary JavaScript through the room_id GET parameter. This is...

6.1CVSS6AI score0.00181EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34902

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00638EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:25 a.m.2 views

CVE-2023-2565

A vulnerability has been found in SourceCodester Multi Language Hotel Management Software 1.0 and classified as problematic. This vulnerability affects unknown code of the file ajax.php of the component POST Parameter Handler. The manipulation of the argument complainttype with the input leads to...

6.1CVSS6.4AI score0.00549EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:34 p.m.5 views

CVE-2022-2648

A vulnerability was found in SourceCodester Multi Language Hotel Management Software. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument roomid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to...

9.8CVSS7.4AI score0.0069EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-42949

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The component controllalogin function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass...

9.8CVSS8.5AI score0.05507EPSS
Exploits0References3
OSV
OSV
added 2023/05/07 3:15 p.m.5 views

CVE-2023-2565

A vulnerability has been found in SourceCodester Multi Language Hotel Management Software 1.0 and classified as problematic. This vulnerability affects unknown code of the file ajax.php of the component POST Parameter Handler. The manipulation of the argument complainttype with the input...

6.1CVSS3.8AI score0.00549EPSS
Exploits1References3
Prion
Prion
added 2023/05/07 3:15 p.m.15 views

Cross site scripting

A vulnerability has been found in SourceCodester Multi Language Hotel Management Software 1.0 and classified as problematic. This vulnerability affects unknown code of the file ajax.php of the component POST Parameter Handler. The manipulation of the argument complainttype with the input...

4CVSS6.1AI score0.00549EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/05/07 3:0 p.m.45 views

CVE-2023-2565

Summary of CVE-2023-2565 : A cross-site scripting vulnerability exists in SourceCodester Multi Language Hotel Management Software 1.0, specifically in the file ajax.php of the POST Parameter Handler. The vulnerability is triggered by manipulating the complaint_type parameter (e.g., using ), enabl...

6.1CVSS4.9AI score0.00549EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/05/07 12:0 a.m.4 views

Multi Language Hotel Management Software 跨站脚本漏洞

Multi Language Hotel Management Software is a multilingual hotel management software by Nikhil B Individual Developer. A cross-site scripting vulnerability exists in Multi Language Hotel Management Software version 1.0, which stems from a cross-site scripting vulnerability due to incorrect...

6.1CVSS4.7AI score0.00549EPSS
Exploits1References4
OSV
OSV
added 2022/09/16 4:15 p.m.1 views

UBUNTU-CVE-2021-42948

HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id's...

3.7CVSS5.8AI score0.0067EPSS
Exploits0References2
CVE
CVE
added 2022/09/16 3:14 p.m.59 views

CVE-2021-42948

CVE-2021-42948 affects HotelDruid Hotel Management Software, specifically version 3.0.3 and below. The root cause is exposure of session tokens in multiple links via GET parameters, enabling attackers to access user session IDs. The vulnerability impact is limited to session token disclosure with...

3.7CVSS4.4AI score0.0067EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/16 2:45 p.m.5 views

CVE-2021-42949

The component controllalogin function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass authentication via bruteforce attacks...

9.6AI score0.05507EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/09/16 12:0 a.m.4 views

HotelDruid 授权问题漏洞

HotelDruid is a hotel management system by the Digitaldruid.net team. The system includes features such as room management, financial management and inventory management. HotelDruid Hotel Management Software version v3.0.3 suffers from an authorization issue vulnerability that stems from the...

9.8CVSS8.3AI score0.05507EPSS
Exploits0References4
NVD
NVD
added 2022/08/04 1:15 p.m.12 views

CVE-2022-2656

A vulnerability classified as critical has been found in SourceCodester Multi Language Hotel Management Software. Affected is an unknown function. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

9.8CVSS0.00638EPSS
Exploits1References2
Prion
Prion
added 2022/08/04 1:15 p.m.21 views

Sql injection

A vulnerability classified as critical has been found in SourceCodester Multi Language Hotel Management Software. Affected is an unknown function. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

7.5CVSS9.7AI score0.00638EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/08/04 12:30 p.m.26 views

CVE-2022-2656 SourceCodester Multi Language Hotel Management Software sql injection

A vulnerability classified as critical has been found in SourceCodester Multi Language Hotel Management Software. Affected is an unknown function. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

6.3CVSS10AI score0.00638EPSS
Exploits1References2
CVE
CVE
added 2022/08/04 12:30 p.m.60 views

CVE-2022-2656

CVE-2022-2656 affects SourceCodester Multi Language Hotel Management Software. Affects an unknown function where manipulating the email parameter triggers SQL injection, allowing remote exploitation. Multiple sources confirm a public exploit/disclosure; no patch/version details are provided in th...

9.8CVSS8.4AI score0.00638EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2022/08/04 9:15 a.m.9 views

CVE-2022-2648

A vulnerability was found in SourceCodester Multi Language Hotel Management Software. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument roomid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to...

9.8CVSS0.0069EPSS
Exploits1References2
CVE
CVE
added 2022/08/04 8:41 a.m.53 views

CVE-2022-2648

CVE-2022-2648 affects SourceCodester Multi Language Hotel Management Software. The vulnerability is a SQL injection caused by manipulation of the argument room_id, enabling remote exploitation. Multiple connected sources confirm the issue and mention that the exploit has been disclosed publicly. ...

9.8CVSS8.3AI score0.0069EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/08/04 8:41 a.m.21 views

CVE-2022-2648 SourceCodester Multi Language Hotel Management Software sql injection

A vulnerability was found in SourceCodester Multi Language Hotel Management Software. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument roomid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to...

6.3CVSS10AI score0.0069EPSS
Exploits1References2
Rows per page
Query Builder