2 matches found
CVE-2023-49988
Hotel Booking Management v1.0 is affected by a SQL injection vulnerability in rooms.php, exploitable via the npss parameter. The root cause is unsafe handling of input in npss, enabling attacker-controlled SQL execution. Documented impact includes potential confidentiality breaches (as reflected ...
CVE-2023-49988
Hotel Booking Management v1.0 was discovered to contain a SQL injection vulnerability via the npss parameter at rooms.php...