11 matches found
CVE-2019-25748
Joomla JHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the rooms parameter. Attackers can send POST requests to the search-hotels endpoint with crafted SQL payloads in the...
CVE-2019-25748
Joomla JHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the rooms parameter. Attackers can send POST requests to the search-hotels endpoint with crafted SQL payloads in the...
EUVD-2019-20184
Joomla JHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the rooms parameter. Attackers can send POST requests to the search-hotels endpoint with crafted SQL payloads in the...
CVE-2019-25748
CVE-2019-25748 affects Joomla JHotelReservation 6.0.7. The issue is an SQL injection in the rooms parameter of the search-hotels endpoint, allowing unauthenticated attackers to send crafted SQL payloads via POST requests to extract sensitive data (e.g., database version details). Documented CVSS:...
CVE-2024-48465
The MRBS version 1.5.0 has an SQL injection vulnerability in the editentryhandler.php file, specifically in the rooms%5B%5D parameter...
CVE-2024-48465
The MRBS version 1.5.0 has an SQL injection vulnerability in the editentryhandler.php file, specifically in the rooms%5B%5D parameter...
CVE-2024-48465
The MRBS version 1.5.0 has an SQL injection vulnerability in the editentryhandler.php file, specifically in the rooms%5B%5D parameter...
CVE-2024-48465
CVE-2024-48465 affects MRBS version 1.5.0 and stems from an SQL injection in the edit_entry_handler.php file, specifically via the rooms%5B%5D parameter. The CVSS 3.1 base score is 9.8 (CRITICAL) with network access, no user interaction, and no privileges required, indicating a potentially severe...
CVE-2024-48465
The MRBS version 1.5.0 has an SQL injection vulnerability in the editentryhandler.php file, specifically in the rooms%5B%5D parameter...
PT-2024-33123 · Mrbs · Mrbs
Name of the Vulnerable Software and Affected Versions: MRBS version 1.5.0 Description: The issue is related to an SQL injection vulnerability found in the edit entry handler.php file, specifically affecting the rooms%5B%5D parameter. Recommendations: For MRBS version 1.5.0, avoid using the...
Hotel Booking Management Security Breach
Hotel Booking Management is a database web application for hotel booking management by Pratham Personal Developer. A security vulnerability exists in Hotel Booking Management v1.0, which was discovered to contain an SQL injection vulnerability through the npss parameter in rooms.php...