CVE-2025-15127

A security vulnerability has been detected in FantasticLBP HotelsServer up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php. Such manipulation of the argument hotelId leads to sql injection. The attack may be...

EUVD-2025-205499

A security vulnerability has been detected in FantasticLBP HotelsServer up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php. Such manipulation of the argument hotelId leads to sql injection. The attack may be...

PT-2025-53642

Name of the Vulnerable Software and Affected Versions FantasticLBP Hotels Server affected versions not specified Description A security issue exists in FantasticLBP Hotels Server related to the /controller/api/Room.php file. Manipulation of the hotelId argument can lead to SQL injection. This...

Hotels_Server SQL注入漏洞

HotelsServer is a backend management system for hotel reservation system by FantasticLBP individual developer. HotelsServer suffers from a SQL injection vulnerability, which stems from the incorrect manipulation of the parameter hotelId in the file /controller/api/Room.php, which could lead to a...

EUVD-2023-55597

Malicious code in bioql PyPI...

CVE-2023-50864 Travel Website v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'hotelId' parameter of the hotelDetails.php resource does not validate the characters received and they are sent unfiltered to the database...

Travel Website SQL Injection Vulnerability

Travel Website is a PHP-based travel website. A SQL injection vulnerability exists in Travel Website v1.0, which occurs when the hotelId parameter of the hotelDetails.php page is processed without filtering and then sent to the database for processing...

BookingeCMS HotelCMS酒店预订管理系统hotelId参数存在注入

0x01 漏洞简述 提交时间： 2015-09-04 13:33 公开时间： 2015-12-06 09:00 漏洞类型： SQL注射漏洞 珠海中新信息科技有限公司开发的BookingeCMS HotelCMS /?m=hotel.getHotelInfo 文件hotelId参数存在注入 0x02 漏洞利用 测试Payload: （post提交） /?m=hotel.getHotelInfo hotelId=11 AND SELECT 6261 FROMSELECT COUNT,CONCAT0x7c,MIDIFNULLCASTDATABASE AS...

CVE-2008-6809

SQL injection vulnerability in hotelhabitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID parameter...

Sql injection

SQL injection vulnerability in hotelhabitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID parameter...

CVE-2008-6809

SQL injection vulnerability in hotelhabitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID parameter...

Booking Centre 2.01 (HotelID) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================ Booking Centre 2.01 HotelID Remote SQL Injection Vulnerability ================================================================...

Booking Centre 2.01 - HotelID SQL Injection

Booking Centre 2.01 - HotelID SQL Injection ----------------------------بسم الله الرحمن الرحيم------------------------------ Tybe: hotelhabitaciones.php HotelID Remote SQL Injection Vulnerability Vendor: www.bookingcentre.eu Software: Hotels Group author: я3d D3v!L Date:...