Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

305 matches found

Wired Threat Level
Wired Threat Leveladded 2026/05/28 10:0 a.m.6 views

Scammers Are Using Your Real Hotel Reservations to Trick You With Spear-Phishing Attacks

Customer data from more than 350 hotels around the world may have been accessed as part of realistic reservation-hijacking scams...

5.8AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/12/29 9:5 a.m.5 views

CVE-2025-15127

A security vulnerability has been detected in FantasticLBP HotelsServer up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php. Such manipulation of the argument hotelId leads to sql injection. The attack may be...

7.5CVSS6.8AI score0.00006EPSS
Exploits1References1
EUVD
EUVDadded 2025/12/28 9:30 a.m.1 views

EUVD-2025-205499

A security vulnerability has been detected in FantasticLBP HotelsServer up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php. Such manipulation of the argument hotelId leads to sql injection. The attack may be...

7.5CVSS6.3AI score0.00006EPSS
Exploits1References5
NVD
NVDadded 2025/12/28 8:15 a.m.1 views

CVE-2025-15127

A security vulnerability has been detected in FantasticLBP HotelsServer up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php. Such manipulation of the argument hotelId leads to sql injection. The attack may be...

9.8CVSS0.00006EPSS
Exploits1References4
OSV
OSVadded 2025/12/28 8:15 a.m.2 views

CVE-2025-15127

A security vulnerability has been detected in FantasticLBP HotelsServer up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php. Such manipulation of the argument hotelId leads to sql injection. The attack may be...

9.8CVSS5.7AI score0.00006EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/12/28 8:2 a.m.21 views

CVE-2025-15127 FantasticLBP Hotels_Server Room.php sql injection

A security vulnerability has been detected in FantasticLBP HotelsServer up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php. Such manipulation of the argument hotelId leads to sql injection. The attack may be...

7.5CVSS0.00006EPSS
Exploits1References4
CVE
CVEadded 2025/12/28 8:2 a.m.8 views

CVE-2025-15127

CVE-2025-15127 affects FantasticLBP Hotels_Server, with the vulnerability located in /controller/api/Room.php. Manipulating the hotelId parameter can lead to a SQL injection. The issue is reported to be exploitable remotely, and public exploit details exist. Affected versions are not specified in...

9.8CVSS6.5AI score0.00006EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/12/28 8:2 a.m.2 views

CVE-2025-15127 FantasticLBP Hotels_Server Room.php sql injection

A security vulnerability has been detected in FantasticLBP HotelsServer up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php. Such manipulation of the argument hotelId leads to sql injection. The attack may be...

7.5CVSS6.5AI score0.00006EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/12/28 12:0 a.m.2 views

PT-2025-53642

Name of the Vulnerable Software and Affected Versions FantasticLBP Hotels Server affected versions not specified Description A security issue exists in FantasticLBP Hotels Server related to the /controller/api/Room.php file. Manipulation of the hotelId argument can lead to SQL injection. This...

9.8CVSS6.7AI score0.00006EPSS
Exploits1References13
RedhatCVE
RedhatCVEadded 2025/12/16 7:44 a.m.2 views

CVE-2025-14710

A vulnerability was detected in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This affects an unknown part of the file /controller/api/OrderList.php. The manipulation of the argument telephone results in sql injection. The attack can be executed remotely. The exploit ...

7.5CVSS6.7AI score0.00036EPSS
Exploits1References1
OSV
OSVadded 2025/12/15 8:15 a.m.2 views

CVE-2025-14710

A vulnerability was detected in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This affects an unknown part of the file /controller/api/OrderList.php. The manipulation of the argument telephone results in sql injection. The attack can be executed remotely. The exploit ...

9.8CVSS5.7AI score
Exploits0References4
NVD
NVDadded 2025/12/15 8:15 a.m.2 views

CVE-2025-14711

A flaw has been found in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This vulnerability affects unknown code of the file /controller/api/hotelList.php. This manipulation of the argument pickedHotelName/type causes sql injection. The attack is possible to be carried...

9.8CVSS0.00039EPSS
Exploits1References6
NVD
NVDadded 2025/12/15 8:15 a.m.2 views

CVE-2025-14710

A vulnerability was detected in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This affects an unknown part of the file /controller/api/OrderList.php. The manipulation of the argument telephone results in sql injection. The attack can be executed remotely. The exploit ...

9.8CVSS0.00036EPSS
Exploits1References4
OSV
OSVadded 2025/12/15 8:15 a.m.0 views

CVE-2025-14711

A flaw has been found in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This vulnerability affects unknown code of the file /controller/api/hotelList.php. This manipulation of the argument pickedHotelName/type causes sql injection. The attack is possible to be carried...

9.8CVSS5.6AI score0.00039EPSS
Exploits1References6
CVE
CVEadded 2025/12/15 8:2 a.m.7 views

CVE-2025-14711

The CVE-2025-14711 entry corresponds to a SQL injection in FantasticLBP Hotels Server (up to 67b44df… commit) via improper handling of the pickedHotelName/type parameter in /controller/api/hotelList.php. The flaw is exploitable remotely, with published proofs, enabling an attacker to influence da...

9.8CVSS6.5AI score0.00039EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichmentadded 2025/12/15 8:2 a.m.1 views

CVE-2025-14711 FantasticLBP Hotels Server hotelList.php sql injection

A flaw has been found in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This vulnerability affects unknown code of the file /controller/api/hotelList.php. This manipulation of the argument pickedHotelName/type causes sql injection. The attack is possible to be carried...

7.5CVSS6.5AI score0.00039EPSS
Exploits1References6
EUVD
EUVDadded 2025/12/15 8:2 a.m.1 views

EUVD-2025-203356

A flaw has been found in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This vulnerability affects unknown code of the file /controller/api/hotelList.php. This manipulation of the argument pickedHotelName/type causes sql injection. The attack is possible to be carried...

7.5CVSS6.3AI score0.00039EPSS
Exploits1References7
Cvelist
Cvelistadded 2025/12/15 8:2 a.m.24 views

CVE-2025-14711 FantasticLBP Hotels Server hotelList.php sql injection

A flaw has been found in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This vulnerability affects unknown code of the file /controller/api/hotelList.php. This manipulation of the argument pickedHotelName/type causes sql injection. The attack is possible to be carried...

7.5CVSS0.00039EPSS
Exploits1References6
Cvelist
Cvelistadded 2025/12/15 7:32 a.m.27 views

CVE-2025-14710 FantasticLBP Hotels Server OrderList.php sql injection

A vulnerability was detected in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This affects an unknown part of the file /controller/api/OrderList.php. The manipulation of the argument telephone results in sql injection. The attack can be executed remotely. The exploit ...

7.5CVSS0.00036EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/12/15 7:32 a.m.1 views

CVE-2025-14710 FantasticLBP Hotels Server OrderList.php sql injection

A vulnerability was detected in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. This affects an unknown part of the file /controller/api/OrderList.php. The manipulation of the argument telephone results in sql injection. The attack can be executed remotely. The exploit ...

7.5CVSS6.3AI score0.00036EPSS
Exploits1References4
Rows per page
Query Builder