7 matches found
CVE-2024-42773
An Incorrect Access Control vulnerability was found in /admin/editroomcontroller.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to edit the valid hotel room entries in the administrator section...
CVE-2024-42772
An Incorrect Access Control vulnerability was found in /admin/rooms.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to view valid hotel room entries in administrator section...
Kashipara Hotel Management System 安全漏洞
Kashipara Hotel Management System is a hotel management system from Kashipara. An Access Control Error vulnerability exists in Kashipara Hotel Management System v1.0, which can be exploited by an unauthenticated attacker to add valid hotel room entries in the administrator section via direct URL...
PT-2024-30144 · Unknown · Kashipara Hotel Management System
Name of the Vulnerable Software and Affected Versions: Kashipara Hotel Management System version 1.0 Description: An Incorrect Access Control issue was found in the /admin/edit room controller.php file, allowing an unauthenticated attacker to edit valid hotel room entries in the administrator...
Kashipara Hotel Management System 安全漏洞
Kashipara Hotel Management System is a hotel management system from Kashipara. An access control error vulnerability exists in Kashipara Hotel Management System v1.0, which can be exploited by an unauthenticated attacker to delete valid hotel room entries in the administrator section...
CVE-2024-42773
An Incorrect Access Control vulnerability was found in /admin/editroomcontroller.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to edit the valid hotel room entries in the administrator section...
CVE-2024-42772
CVE-2024-42772 is a broken access control vulnerability in Kashipara Hotel Management System v1.0. An unauthenticated attacker can access /admin/rooms.php to view valid hotel room entries in the administrator interface, due to an incorrect access control check. The issue affects the administrator...