Lucene search
K

1432 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/26 12:23 p.m.2 views

CVE-2026-4875

A vulnerability was determined in itsourcecode Free Hotel Reservation System 1.0. The affected element is an unknown function of the file /admin/modamenities/index.php?view=add. This manipulation of the argument image causes unrestricted upload. The attack is possible to be carried out remotely...

5.8CVSS5.6AI score0.00223EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/26 12:23 p.m.3 views

CVE-2026-4875 itsourcecode Free Hotel Reservation System index.php unrestricted upload

A vulnerability was determined in itsourcecode Free Hotel Reservation System 1.0. The affected element is an unknown function of the file /admin/modamenities/index.php?view=add. This manipulation of the argument image causes unrestricted upload. The attack is possible to be carried out remotely...

5.8CVSS5.6AI score0.00223EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.6 views

itsourcecode Free Hotel Reservation System SQL注入漏洞

itsourcecode Free Hotel Reservation System is an open-source hotel reservation system developed by itsourcecode. Version 1.0 of the system has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter ID in the file admin/modamenities/index.php?view=editpic...

6.5CVSS6.6AI score0.00196EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.7 views

PT-2026-28658

Name of the Vulnerable Software and Affected Versions itsourcecode Free Hotel Reservation System version 1.0 Description A flaw exists in itsourcecode Free Hotel Reservation System 1.0. Manipulation of the ID argument in a file, /admin/mod amenities/index.php?view=editpic, can lead to SQL...

6.5CVSS5.9AI score0.00196EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/24 12:30 a.m.8 views

EUVD-2026-14604

A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0. This affects an unknown part of the file /hotel/admin/modusers/index.php?view=edit&id=8 of the component Parameter Handler. The manipulation of the argument accountid leads to sql injection. Remote exploitation of t...

7.5CVSS5.5AI score0.00254EPSS
Exploits0References6
CVE
CVE
added 2026/03/23 11:38 p.m.6 views

CVE-2026-4615

The CVE-2026-4615 entry details a SQL injection in SourceCodester Online Catering Reservation 1.0, triggered by manipulating the rcode parameter in the /search.php function. The vulnerability is exploitable remotely, and public exploits are available. Affected component is an unknown function wit...

7.5CVSS7AI score0.00318EPSS
Exploits0References5
NVD
NVD
added 2026/03/23 10:16 p.m.7 views

CVE-2026-4612

A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0. This affects an unknown part of the file /hotel/admin/modusers/index.php?view=edit&id=8 of the component Parameter Handler. The manipulation of the argument accountid leads to sql injection. Remote exploitation of t...

7.5CVSS0.00254EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/23 9:57 p.m.36 views

CVE-2026-4612 itsourcecode Free Hotel Reservation System Parameter index.php sql injection

A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0. This affects an unknown part of the file /hotel/admin/modusers/index.php?view=edit&id=8 of the component Parameter Handler. The manipulation of the argument accountid leads to sql injection. Remote exploitation of t...

7.5CVSS0.00254EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/23 9:57 p.m.2 views

CVE-2026-4612

A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0. This affects an unknown part of the file /hotel/admin/modusers/index.php?view=edit&id=8 of the component Parameter Handler. The manipulation of the argument accountid leads to sql injection. Remote exploitation of t...

7.5CVSS6.7AI score0.00254EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/23 9:57 p.m.3 views

CVE-2026-4612 itsourcecode Free Hotel Reservation System Parameter index.php sql injection

A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0. This affects an unknown part of the file /hotel/admin/modusers/index.php?view=edit&id=8 of the component Parameter Handler. The manipulation of the argument accountid leads to sql injection. Remote exploitation of t...

7.5CVSS6.7AI score0.00254EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.8 views

PT-2026-27247

A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0. This affects an unknown part of the file /hotel/admin/mod users/index.php?view=edit&id=8 of the component Parameter Handler. The manipulation of the argument account id leads to sql injection. Remote exploitation of...

7.5CVSS6.7AI score0.00254EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.15 views

itsourcecode Free Hotel Reservation System SQL注入漏洞

itsourcecode Free Hotel Reservation System is an open-source hotel reservation system developed by itsourcecode. Version 1.0 of the system has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter accountid in the file /hotel/admin/modusers/index.php,...

7.5CVSS7.2AI score0.00254EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/16 3:30 p.m.4 views

EUVD-2026-12423

A flaw has been found in itsourcecode Free Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /hotel/admin/modreports/index.php. Executing a manipulation of the argument Home can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/03/16 12:2 p.m.4 views

CVE-2026-4237 itsourcecode Free Hotel Reservation System index.php sql injection

A flaw has been found in itsourcecode Free Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /hotel/admin/modreports/index.php. Executing a manipulation of the argument Home can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5
CVE
CVE
added 2026/03/16 12:2 p.m.14 views

CVE-2026-4237

CVE-2026-4237 affects itsourcecode Free Hotel Reservation System 1.0. The vulnerability is an SQL injection in the admin reporting page, specifically /hotel/admin/mod_reports/index.php, triggered by manipulating the Home parameter. The issue is exploitable remotely with no authentication required...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.11 views

PT-2026-25704

A flaw has been found in itsourcecode Free Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /hotel/admin/mod reports/index.php. Executing a manipulation of the argument Home can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.6 views

itsourcecode Free Hotel Reservation System SQL注入漏洞

itsourcecode Free Hotel Reservation System is an open-source hotel reservation system developed by itsourcecode. Version 1.0 of the system has a SQL injection vulnerability. This vulnerability arises from improper handling of the parameter “Home” in the file /hotel/admin/modreports/index.php, whi...

7.5CVSS7.2AI score0.00254EPSS
Exploits0References5
OSV
OSV
added 2026/03/12 8:16 a.m.3 views

CVE-2026-4014

A security flaw has been discovered in itsourcecode Cafe Reservation System 1.0. This impacts an unknown function of the file /curvus2/signup.php of the component Registration. Performing a manipulation of the argument Username results in sql injection. Remote exploitation of the attack is...

9.8CVSS5.6AI score0.00379EPSS
Exploits1References5
NVD
NVD
added 2026/03/12 8:16 a.m.4 views

CVE-2026-4014

A security flaw has been discovered in itsourcecode Cafe Reservation System 1.0. This impacts an unknown function of the file /curvus2/signup.php of the component Registration. Performing a manipulation of the argument Username results in sql injection. Remote exploitation of the attack is...

9.8CVSS0.00379EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/03/12 8:2 a.m.27 views

CVE-2026-4014 itsourcecode Cafe Reservation System Registration signup.php sql injection

A security flaw has been discovered in itsourcecode Cafe Reservation System 1.0. This impacts an unknown function of the file /curvus2/signup.php of the component Registration. Performing a manipulation of the argument Username results in sql injection. Remote exploitation of the attack is...

7.5CVSS0.00379EPSS
Exploits1References5
Rows per page
Query Builder