CVE-2025-12594 code-projects Simple Online Hotel Reservation System add_account.php sql injection

A security flaw has been discovered in code-projects Simple Online Hotel Reservation System 2.0. This affects an unknown function of the file /admin/addaccount.php. The manipulation of the argument Name results in sql injection. The attack may be performed from remote. The exploit has been releas...

CVE-2025-11352

A security vulnerability has been detected in code-projects Online Hotel Reservation System 1.0. This affects an unknown function of the file /admin/addexec.php. Such manipulation of the argument image leads to unrestricted upload. The attack can be executed remotely. The exploit has been disclos...

CVE-2025-6450

CVE-2025-6450 affects code-projects’ Simple Online Hotel Reservation System 1.0, with a vulnerability in the file /admin/confirm_reserve.php. The issue is a SQL injection triggered by manipulating the transaction_id parameter, allowing remote abuse. Exploit details are publicly disclosed accordin...

PT-2025-26533 · Unknown · Code-Projects Simple Online Hotel Reservation System

Name of the Vulnerable Software and Affected Versions: code-projects Simple Online Hotel Reservation System version 1.0 Description: A critical vulnerability has been found in the code-projects Simple Online Hotel Reservation System, affecting an unknown functionality of the file /admin/delete...