Lucene search
K

31 matches found

EUVD
EUVD
added 2026/06/29 9:45 a.m.5 views

EUVD-2026-40059

A vulnerability was determined in itsourcecode Online Hotel Management System 1.0. This affects an unknown part of the file /admin/modusers/controller.php?action=edit of the component POST Request Handler. This manipulation of the argument Name causes cross site scripting. The attack may be...

5.3CVSS4.4AI score0.00443EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/29 9:30 a.m.6 views

EUVD-2026-40058

A vulnerability was found in itsourcecode Online Hotel Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/modusers/controller.php?action=add. The manipulation of the argument Name results in sql injection. The attack can be launched remotely. The exploi...

7.5CVSS6.9AI score0.00412EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 9:30 a.m.33 views

CVE-2026-13555 itsourcecode Online Hotel Management System controller.php add sql injection

A vulnerability was found in itsourcecode Online Hotel Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/modusers/controller.php?action=add. The manipulation of the argument Name results in sql injection. The attack can be launched remotely. The exploi...

7.5CVSS0.00412EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/29 8:45 a.m.5 views

EUVD-2026-40063

A vulnerability was detected in itsourcecode Online Hotel Management System 1.0. This impacts an unknown function of the file /admin/modamenities/controller.php?action=edit. Performing a manipulation of the argument amenid results in sql injection. It is possible to initiate the attack remotely...

7.5CVSS7AI score0.00412EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.14 views

PT-2026-53243

Name of the Vulnerable Software and Affected Versions itsourcecode Online Hotel Management System version 1.0 Description A remote cross site scripting issue exists in the POST Request Handler component. The flaw occurs when the Name argument is manipulated within the '/admin/mod...

5.3CVSS5.4AI score0.00443EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/03/28 11:10 p.m.3 views

CVE-2026-4966

A flaw has been found in itsourcecode Free Hotel Reservation System 1.0. Impacted is an unknown function of the file /admin/modroom/index.php?view=edit. Executing a manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been published and m...

6.5CVSS6.5AI score0.0025EPSS
Exploits0References1
CVE
CVE
added 2026/03/27 5:41 p.m.14 views

CVE-2026-4966

CVE-2026-4966 affects itsourcecode Free Hotel Reservation System 1.0. The vulnerability is in the file /admin/mod_room/index.php?view=edit where manipulating the ID parameter enables SQL injection. It can be exploited remotely, and public exploits have been published. Various sources confirm the ...

6.5CVSS6.5AI score0.0025EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.7 views

PT-2026-28692

Name of the Vulnerable Software and Affected Versions itsourcecode Free Hotel Reservation System version 1.0 Description A flaw exists in itsourcecode Free Hotel Reservation System version 1.0 that may allow for SQL injection. The issue is located in the file /admin/mod room/index.php?view=edit...

6.5CVSS5.8AI score0.0025EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/09/26 8:2 p.m.9 views

CVE-2025-11040 code-projects Hostel Management System index.php sql injection

A vulnerability was detected in code-projects Hostel Management System 1.0. Affected by this issue is some unknown functionality of the file /justines/admin/modusers/index.php?view=view. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit...

7.5CVSS6.8AI score0.00387EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/09/24 8:30 p.m.7 views

CVE-2025-10813

A vulnerability was found in code-projects Hostel Management System 1.0. Affected is an unknown function of the file /justines/admin/modreports/index.php. The manipulation of the argument Home results in sql injection. It is possible to launch the attack remotely. The exploit has been made public...

9.8CVSS7.3AI score0.00384EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/09/22 7:2 p.m.8 views

CVE-2025-10811 code-projects Hostel Management System index.php sql injection

A flaw has been found in code-projects Hostel Management System 1.0. This affects an unknown function of the file /justines/admin/modcomments/index.php?view=view. Executing manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS0.00629EPSS
Exploits1References5
CVE
CVE
added 2025/09/22 12:32 p.m.15 views

CVE-2025-10798

Code-projects Hostel Management System 1.0 is affected by a SQL injection in /justines/admin/mod_roomtype/index.php?view=view, caused by unsanitized input in the ID parameter. Several sources (NVD, Red Hat, CNVD, CVE lists) confirm remote exploitation with publicly available exploit code, implyin...

9.8CVSS6.8AI score0.00387EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2024/10/27 12:0 a.m.5 views

SourceCodester Online Hotel Reservation System 代码问题漏洞

SourceCodester Online Hotel Reservation System is a SourceCodester open source online hotel system. A code issue vulnerability exists in SourceCodester Online Hotel Reservation System version 1.0, which stems from an unrestricted file double-penetration vulnerability in the image parameter of the...

7.2CVSS6.7AI score0.01094EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/10/27 12:0 a.m.3 views

SourceCodester Online Hotel Reservation System SQL注入漏洞

SourceCodester Online Hotel Reservation System is a SourceCodester open source online hotel system. SourceCodester Online Hotel Reservation System version 1.0 has a SQL injection vulnerability, the vulnerability stems from the id parameter in the /marimar/admin/modroom/controller.php page contain...

7.2CVSS7AI score0.00419EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/08/06 12:0 a.m.4 views

PayPal,Credit Card and Debit Card Payment SQL注入漏洞

PayPal,Credit Card and Debit Card Payment is a PayPal, Credit Card and Debit Card Payment software by janobe individual developer. A SQL injection vulnerability exists in PayPal,Credit Card and Debit Card Payment version 1.0. An attacker can use this vulnerability to send a specially crafted quer...

9.8CVSS7.5AI score0.00454EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/06 12:0 a.m.7 views

PT-2024-25596 · Paypal · Paypal

Name of the Vulnerable Software and Affected Versions: PayPal, Credit Card and Debit Card Payment version 1.0 Description: The issue allows an attacker to exploit a SQL injection vulnerability by sending a specially crafted query to the server, potentially retrieving all stored information throug...

9.8CVSS7.3AI score0.00454EPSS
Exploits0References4
OSV
OSV
added 2024/06/18 1:15 a.m.4 views

CVE-2024-6084

A vulnerability has been found in itsourcecode Pool of Bethesda Online Reservation System up to 1.0 and classified as critical. Affected by this vulnerability is the function uploadImage of the file /admin/modroom/controller.php?action=add. The manipulation of the argument image leads to...

9.8CVSS5.4AI score0.00874EPSS
Exploits1References4
OSV
OSV
added 2024/04/05 10:15 p.m.5 views

CVE-2024-3357

A vulnerability classified as problematic has been found in SourceCodester Aplaya Beach Resort Online Reservation System 1.0. This affects an unknown part of the file admin/modreports/index.php. The manipulation of the argument end leads to cross site scripting. It is possible to initiate the...

5.4CVSS3.9AI score0.0055EPSS
Exploits1References4
OSV
OSV
added 2024/04/05 8:15 p.m.4 views

CVE-2024-3354

A vulnerability was found in SourceCodester Aplaya Beach Resort Online Reservation System 1.0. It has been classified as critical. Affected is an unknown function of the file admin/modusers/index.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

9.8CVSS5.7AI score0.00897EPSS
Exploits1References4
OSV
OSV
added 2024/04/05 6:15 p.m.5 views

CVE-2024-3351

A vulnerability, which was classified as critical, was found in SourceCodester Aplaya Beach Resort Online Reservation System 1.0. This affects an unknown part of the file admin/modroomtype/index.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

9.8CVSS5.7AI score
Exploits0References4
Rows per page
Query Builder