CVE-2026-7697 AMTT Hotel Broadband Operation System cardhand_submit.php sql injection

A vulnerability was determined in AMTT Hotel Broadband Operation System 1.0. Affected is an unknown function of the file /manager/card/cardhandsubmit.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly...

CVE-2026-7697

CVE-2026-7697 affects AMTT Hotel Broadband Operation System 1.0. Affected component: /manager/card/cardhand_submit.php where an argument ID enables a SQL injection. Reported remote exploitation with a publicly disclosed exploit; vendor did not respond. CVSS metrics indicate NETWORK access, LOW im...

AMTT Hotel Broadband Operation System 注入漏洞

AMTT Hotel Broadband Operation System is a hotel broadband operation system developed by AMTT Corporation. Version 1.0 of the AMTT Hotel Broadband Operation System contains a injection vulnerability. This vulnerability arises from the operation of unknown functions on parameters ID in the file...

CVE-2025-14090

A security flaw has been discovered in AMTT Hotel Broadband Operation System 1.0. This affects an unknown part of the file /manager/card/cardmakedown.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-14090 AMTT Hotel Broadband Operation System cardmake_down.php sql injection

A security flaw has been discovered in AMTT Hotel Broadband Operation System 1.0. This affects an unknown part of the file /manager/card/cardmakedown.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

EUVD-2025-201425

A security flaw has been discovered in AMTT Hotel Broadband Operation System 1.0. This affects an unknown part of the file /manager/card/cardmakedown.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

AMTT Hotel Broadband Operation System SQL注入漏洞

AMTT Hotel Broadband Operation System is a hotel broadband operation system from China's AMTT company. A SQL injection vulnerability exists in AMTT Hotel Broadband Operation System version 1.0, which originates from the incorrect operation of the parameter ID in the file...

CVE-2025-13123

A flaw has been found in AMTT Hotel Broadband Operation System 1.0. The impacted element is an unknown function of the file /user/portal/getfirstdate.php. Executing manipulation of the argument uid can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2025-13123

CVE-2025-13123 affects AMTT Hotel Broadband Operation System 1.0. The vulnerability is a SQL injection in the unknown function of the file /user/portal/get_firstdate.php triggered by manipulating the uid parameter. The issue can be exploited remotely and an exploit has been published; multiple so...

CVE-2025-13123 AMTT Hotel Broadband Operation System get_firstdate.php sql injection

A flaw has been found in AMTT Hotel Broadband Operation System 1.0. The impacted element is an unknown function of the file /user/portal/getfirstdate.php. Executing manipulation of the argument uid can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...

PT-2025-46890

Name of the Vulnerable Software and Affected Versions AMTT Hotel Broadband Operation System version 1.0 Description A flaw exists in AMTT Hotel Broadband Operation System version 1.0 that allows for SQL injection. Manipulation of the uid argument in the file '/user/portal/get firstdate.php' throu...

CVE-2025-12253

A vulnerability was determined in AMTT Hotel Broadband Operation System 1.0. Affected by this vulnerability is an unknown functionality of the file /user/portal/getexpiredtime.php. This manipulation of the argument uid causes sql injection. The attack may be initiated remotely. The exploit has be...

PT-2025-43912

Name of the Vulnerable Software and Affected Versions AMTT Hotel Broadband Operation System version 1.0 Description A flaw exists in AMTT Hotel Broadband Operation System that allows for SQL injection. This issue is related to an unknown functionality within the /user/portal/get expiredtime.php...

AMTT Hotel Broadband Operation System SQL注入漏洞

AMTT Hotel Broadband Operation System is a hotel broadband operation system from China-based AMTT. A SQL injection vulnerability exists in AMTT Hotel Broadband Operation System version 1.0, which originates from an incorrect manipulation of the parameter uid in the file...

AMTT Hotel Broadband Operation System 安全漏洞

AMTT Hotel Broadband Operation System is a hotel broadband operation system from China-based AmTech Century AMTT. A security vulnerability exists in the AMTT Hotel Broadband Operation System, which originates from an unauthenticated command injection in the /manager/radius/serverping.php endpoint...

VulnCheck KEV: CVE-2016-15048

AMTT Hotel Broadband Operation System HiBOS contains an unauthenticated command injection vulnerability in the /manager/radius/serverping.php endpoint. The application constructs a shell command that includes the user-supplied ip parameter and executes it without proper validation or escaping. An...

EUVD-2025-12430

Malicious code in bioql PyPI...

CVE-2025-3983

A vulnerability has been found in AMTT Hotel Broadband Operation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /manager/system/nlogdown.php. The manipulation of the argument ProtocolType leads to command injection. The attack can be...

AMTT Hotel Broadband Operation System 注入漏洞

AMTT Hotel Broadband Operation System is a hotel broadband operation system from China's AMTT company. An injection vulnerability exists in AMTT Hotel Broadband Operation System version 1.0, which originates from the parameter ProtocolType in the file /manager/system/nlogdown.php, resulting in a...

CVE-2025-2701

A vulnerability classified as critical was found in AMTT Hotel Broadband Operation System 1.0. This vulnerability affects the function popen of the file /manager/network/portsetup.php. The manipulation of the argument SwitchVersion/SwitchWrite/SwitchIP/SwitchIndex/SwitchState leads to os command...