CVE-2025-11398

A weakness has been identified in SourceCodester Hotel and Lodge Management System 1.0. The impacted element is an unknown function of the file /profile.php of the component Profile Page. Executing manipulation of the argument image can lead to unrestricted upload. The attack may be launched...

CVE-2025-11474 SourceCodester Hotel and Lodge Management System edit_booking.php sql injection

A vulnerability was found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /editbooking.php. Performing manipulation of the argument Name results in sql injection. The attack can be initiated remotely. The exploit has...

CVE-2025-11470

A security vulnerability has been detected in SourceCodester Hotel and Lodge Management System up to 1.0. The impacted element is an unknown function of the file /managewebsite.php. The manipulation of the argument websiteimage/backloginimage leads to unrestricted upload. The attack is possible t...

CVE-2025-11404

A vulnerability was determined in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown part of the file /pages/savetax.php. Executing manipulation of the argument percentage can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2025-11402

A vulnerability has been found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /delcurr.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been...

CVE-2025-11403

A vulnerability was found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this issue is some unknown functionality of the file /delbooking.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has...

EUVD-2025-32730

A vulnerability was found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this issue is some unknown functionality of the file /delbooking.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-11399 SourceCodester Hotel and Lodge Management System save_room.php sql injection

A security vulnerability has been detected in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown function of the file /pages/saveroom.php. The manipulation of the argument floorno leads to sql injection. Remote exploitation of the attack is possible. The exploit has bee...

SourceCodester Hotel and Lodge Management System 安全漏洞

SourceCodester Hotel and Lodge Management System is a SourceCodester open source hotel and lodge management system. A security vulnerability exists in SourceCodester Hotel and Lodge Management System version 1.0, which stems from an incorrect manipulation of the parameter ID in the file...

PT-2025-41160

Name of the Vulnerable Software and Affected Versions SourceCodester Hotel and Lodge Management System version 1.0 Description A flaw exists in SourceCodester Hotel and Lodge Management System 1.0 related to the file /del tax.php. Manipulation of the ID parameter can lead to SQL injection. This...

SourceCodester Hotel and Lodge Management System SQL注入漏洞

SourceCodester Hotel and Lodge Management System is a SourceCodester open source hotel and lodge management system. A SQL injection vulnerability exists in SourceCodester Hotel and Lodge Management System version 1.0, which stems from an incorrect manipulation of the parameter currcode in the fil...

SourceCodester Hotel and Lodge Management System SQL注入漏洞

SourceCodester Hotel and Lodge Management System is a SourceCodester open source hotel and lodge management system. A SQL injection vulnerability exists in SourceCodester Hotel and Lodge Management System version 1.0, which stems from an incorrect manipulation of the parameter percentage in the...

SourceCodester Hotel and Lodge Management System 安全漏洞

SourceCodester Hotel and Lodge Management System is SourceCodester open source hotel and lodge management system. A security vulnerability exists in SourceCodester Hotel and Lodge Management System version 1.0, which stems from an incorrect manipulation of the parameter email in the file login.ph...

SourceCodester Hotel and Lodge Management System SQL Injection Vulnerability (CNVD-2021-95730)

SourceCodester Hotel and Lodge Management System is a hotel and lodge management system. SourceCodester Hotel and Lodge Management System suffers from a SQL injection vulnerability that can be exploited by an attacker to execute arbitrary SQL commands via email parameters...

CVE-2020-21012

CVE-2020-21012 affects Sourcecodester Hotel and Lodge Management System 2.0. The vulnerability is an unauthenticated SQL injection via the email parameter on the edit page for multiple entities (Customer, Room, Currency, Room Booking Details, Tax Details), enabling an attacker to execute arbitrar...