8 matches found
CVE-2023-43374
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the idutentelog parameter at /hoteldruid/personalizza.php...
CVE-2023-43374
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the idutentelog parameter at /hoteldruid/personalizza.php...
Sql injection
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the idutentelog parameter at /hoteldruid/personalizza.php...
HotelDruid SQL Injection Vulnerability
Hoteldruid is a free and open source hotel management program from Hoteldruid. A security vulnerability exists in HotelDruid version v3.0.5, which stems from a SQL injection vulnerability in the parameter idutentelog...
CVE-2023-43374
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the idutentelog parameter at /hoteldruid/personalizza.php...
CVE-2023-43374
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the idutentelog parameter at /hoteldruid/personalizza.php...
CVE-2023-43374
Hoteldruid v3.0.5 contains a SQL injection vulnerability via the id_utente_log parameter in /hoteldruid/personalizza.php (CVE-2023-43374). CVSS v3.1 base score 9.8 (critical); attack vector NETWORK; no user interaction; high impact to confidentiality, integrity, and availability. Root cause: impr...
CVE-2023-43374
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the idutentelog parameter at /hoteldruid/personalizza.php...