Lucene search
K

512 matches found

CVE
CVE
added yesterday8 views

CVE-2026-14764

A CVE (CVE-2026-14764) affects code-projects Hotel and Tourism Reservation 1.0. The vulnerability is an SQL injection in the Event Management Page, specifically via the fdetails argument in the file /admin/add_event.php. Exploitation can be performed remotely, and public disclosures exist. CVSS m...

7.5CVSS6.8AI score
Exploits0References6
EUVD
EUVD
added yesterday5 views

EUVD-2026-41774

A vulnerability has been found in code-projects Hotel and Tourism Reservation 1.0. This impacts an unknown function of the file /admin/addevent.php of the component Event Management Page. Such manipulation of the argument fdetails leads to sql injection. The attack can be launched remotely. The...

7.5CVSS5.8AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added yesterday4 views

CVE-2026-14763

A flaw has been found in code-projects Hotel and Tourism Reservation 1.0. This affects an unknown function of the file /admin/tourreserves.php of the component Tour Reservations Page. This manipulation of the argument tour causes sql injection. The attack can be initiated remotely. The exploit ha...

7.5CVSS6.8AI score
Exploits0References6Affected Software1
CVE
CVE
added yesterday11 views

CVE-2026-14763

CVE-2026-14763 affects code-projects Hotel and Tourism Reservation 1.0. The vulnerability targets the Tour Reservations Page, specifically /admin/tour_reserves.php, where manipulation of the tour argument enables SQL injection. Attacks are network-based and can be initiated remotely; the exploit ...

7.5CVSS6.8AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added yesterday3 views

CVE-2026-14762

A vulnerability was detected in code-projects Hotel and Tourism Reservation 1.0. The impacted element is an unknown function of the file /admin/rooms.php of the component Room Management Page. The manipulation of the argument delete results in sql injection. It is possible to launch the attack...

7.5CVSS6.8AI score
Exploits0References6Affected Software1
EUVD
EUVD
added yesterday7 views

EUVD-2026-41772

A vulnerability was detected in code-projects Hotel and Tourism Reservation 1.0. The impacted element is an unknown function of the file /admin/rooms.php of the component Room Management Page. The manipulation of the argument delete results in sql injection. It is possible to launch the attack...

7.5CVSS6.8AI score
Exploits0References6
EUVD
EUVD
added yesterday8 views

EUVD-2026-41761

A vulnerability has been found in code-projects Hotel and Tourism Reservation 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/reservations.php of the component Reservations Management Page. The manipulation of the argument delete leads to sql injection. The atta...

7.5CVSS6.8AI score
Exploits0References6
CVE
CVE
added yesterday6 views

CVE-2026-14755

The CVE concerns code-projects Hotel and Tourism Reservation 1.0. The vulnerability exists in the Reservations Management Page (/admin/reservations.php), where manipulating the delete parameter causes SQL injection. Likely exploitable remotely with no authentication required, as indicated by CVSS...

7.5CVSS6.8AI score
Exploits0References6
NVD
NVD
added 2026/06/19 6:16 p.m.10 views

CVE-2019-25750

Joomla Component J-MultipleHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the hotelid parameter. Attackers can send POST requests to the search-hotels endpoint with crafted S...

8.8CVSS0.00366EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/19 5:8 p.m.7 views

CVE-2019-25750

Joomla Component J-MultipleHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the hotelid parameter. Attackers can send POST requests to the search-hotels endpoint with crafted S...

8.8CVSS6.3AI score0.00366EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/06/19 5:8 p.m.12 views

CVE-2019-25750

CVE-2019-25750 affects Joomla component J-MultipleHotelReservation version 6.0.7. The vulnerability is an SQL injection in the hotel_id parameter that allows unauthenticated attackers to execute arbitrary SQL queries by sending crafted payloads to the search-hotels endpoint (POST) using UNION SEL...

8.8CVSS6.3AI score0.00366EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/06 6:43 p.m.12 views

CVE-2026-11342

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

7.5CVSS5.5AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:48 p.m.9 views

CVE-2026-10289

A security flaw has been discovered in code-projects Hotel and Tourism Reservation System 1.0. Impacted is an unknown function of the file /ht/tour.php. Performing a manipulation of the argument name /email /people /number results in cross site scripting. The attack can be initiated remotely. The...

5.3CVSS4AI score0.00338EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:34 p.m.12 views

CVE-2026-10288

A vulnerability was identified in code-projects Hotel and Tourism Reservation System 1.0. This issue affects the function passwordverify of the file /admin/login.php of the component Admin Login. Such manipulation of the argument Password leads to improper authentication. It is possible to launch...

7.5CVSS7AI score0.00496EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:34 p.m.11 views

CVE-2026-10290

A weakness has been identified in code-projects Hotel and Tourism Reservation System 1.0. The affected element is an unknown function of the file tour.php of the component GET Parameter Handler. Executing a manipulation of the argument tour can lead to sql injection. The attack can be launched...

7.5CVSS7AI score0.00318EPSS
Exploits0References1
NVD
NVD
added 2026/06/05 6:17 p.m.10 views

CVE-2026-11342

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

7.5CVSS0.00263EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/05 5:0 p.m.29 views

CVE-2026-11342 code-projects Hotel and Tourism Reservation System details.php sql injection

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

7.5CVSS0.00263EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/06/05 5:0 p.m.7 views

CVE-2026-11342 code-projects Hotel and Tourism Reservation System details.php sql injection

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

7.5CVSS7AI score0.00263EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/05 5:0 p.m.7 views

CVE-2026-11342

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

7.5CVSS7AI score0.00263EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/06/05 5:0 p.m.10 views

EUVD-2026-34864

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

7.5CVSS7AI score0.00263EPSS
Exploits0References6
Rows per page
Query Builder