Lucene search
K

12 matches found

NVD
NVD
added 2026/06/19 5:16 p.m.9 views

CVE-2019-25748

Joomla JHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the rooms parameter. Attackers can send POST requests to the search-hotels endpoint with crafted SQL payloads in the...

8.8CVSS0.00296EPSS
Exploits0References4
CVE
CVE
added 2026/06/19 5:1 p.m.21 views

CVE-2019-25748

CVE-2019-25748 affects Joomla JHotelReservation 6.0.7. The issue is an SQL injection in the rooms parameter of the search-hotels endpoint, allowing unauthenticated attackers to send crafted SQL payloads via POST requests to extract sensitive data (e.g., database version details). Documented CVSS:...

8.8CVSS6.3AI score0.00296EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/19 5:1 p.m.5 views

CVE-2019-25748

Joomla JHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the rooms parameter. Attackers can send POST requests to the search-hotels endpoint with crafted SQL payloads in the...

8.8CVSS6.3AI score0.00296EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/06/19 5:1 p.m.7 views

EUVD-2019-20184

Joomla JHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the rooms parameter. Attackers can send POST requests to the search-hotels endpoint with crafted SQL payloads in the...

8.8CVSS6.3AI score0.00296EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.14 views

PT-2026-50964

Name of the Vulnerable Software and Affected Versions JHotelReservation version 6.0.7 Description An SQL injection allows unauthenticated attackers to execute arbitrary SQL queries. This is achieved by sending POST requests to the 'search-hotels' endpoint with malicious code injected into the roo...

8.8CVSS6.2AI score0.00296EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/23 6:17 a.m.6 views

CVE-2024-48465

The MRBS version 1.5.0 has an SQL injection vulnerability in the editentryhandler.php file, specifically in the rooms%5B%5D parameter...

9.8CVSS5.9AI score0.00453EPSS
Exploits0References1
NVD
NVD
added 2024/10/28 8:15 p.m.26 views

CVE-2024-48465

The MRBS version 1.5.0 has an SQL injection vulnerability in the editentryhandler.php file, specifically in the rooms%5B%5D parameter...

9.8CVSS0.00453EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.11 views

PT-2024-33123 · Mrbs · Mrbs

Name of the Vulnerable Software and Affected Versions: MRBS version 1.5.0 Description: The issue is related to an SQL injection vulnerability found in the edit entry handler.php file, specifically affecting the rooms%5B%5D parameter. Recommendations: For MRBS version 1.5.0, avoid using the...

9.8CVSS7.9AI score0.00453EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/28 12:0 a.m.14 views

CVE-2024-48465

The MRBS version 1.5.0 has an SQL injection vulnerability in the editentryhandler.php file, specifically in the rooms%5B%5D parameter...

8AI score0.00453EPSS
Exploits0References2
CVE
CVE
added 2024/10/28 12:0 a.m.64 views

CVE-2024-48465

CVE-2024-48465 affects MRBS version 1.5.0 and stems from an SQL injection in the edit_entry_handler.php file, specifically via the rooms%5B%5D parameter. The CVSS 3.1 base score is 9.8 (CRITICAL) with network access, no user interaction, and no privileges required, indicating a potentially severe...

9.8CVSS8.3AI score0.00453EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/28 12:0 a.m.27 views

CVE-2024-48465

The MRBS version 1.5.0 has an SQL injection vulnerability in the editentryhandler.php file, specifically in the rooms%5B%5D parameter...

0.00453EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/07 12:0 a.m.9 views

Hotel Booking Management Security Breach

Hotel Booking Management is a database web application for hotel booking management by Pratham Personal Developer. A security vulnerability exists in Hotel Booking Management v1.0, which was discovered to contain an SQL injection vulnerability through the npss parameter in rooms.php...

7.5CVSS8.2AI score0.0068EPSS
Exploits1References3
Rows per page
Query Builder