Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

ATTACKERKB
ATTACKERKBadded 2026/04/13 12:0 a.m.2 views

CVE-2026-36941

Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL Injection in the file /orms/admin/rooms/manageroom.php...

2.7CVSS5.9AI score0.0019EPSS
Exploits0References2
CVE
CVEadded 2025/12/28 8:2 a.m.11 views

CVE-2025-15127

CVE-2025-15127 affects FantasticLBP Hotels_Server, with the vulnerability located in /controller/api/Room.php. Manipulating the hotelId parameter can lead to a SQL injection. The issue is reported to be exploitable remotely, and public exploit details exist. Affected versions are not specified in...

9.8CVSS6.5AI score0.00407EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2025/12/18 9:15 p.m.2 views

CVE-2025-63949

A Reflected Cross-Site Scripting XSS vulnerability in yohanawi Hotel Management System commit 87e004a allows a remote attacker to execute arbitrary web script via the 'error' parameter in pages/room.php...

6.1CVSS6.1AI score0.00217EPSS
Exploits1References2
NVD
NVDadded 2025/12/18 9:15 p.m.3 views

CVE-2025-63949

A Reflected Cross-Site Scripting XSS vulnerability in yohanawi Hotel Management System commit 87e004a allows a remote attacker to execute arbitrary web script via the 'error' parameter in pages/room.php...

6.1CVSS0.00217EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/12/18 12:0 a.m.22 views

CVE-2025-63949

A Reflected Cross-Site Scripting XSS vulnerability in yohanawi Hotel Management System commit 87e004a allows a remote attacker to execute arbitrary web script via the 'error' parameter in pages/room.php...

0.00217EPSS
Exploits1References2
NVD
NVDadded 2025/11/02 5:15 a.m.19 views

CVE-2025-12593

A vulnerability was identified in code-projects Simple Online Hotel Reservation System 2.0. The impacted element is an unknown function of the file /admin/editroom.php of the component Photo Handler. The manipulation leads to unrestricted upload. The attack is possible to be carried out remotely...

7.2CVSS0.00351EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/10/08 12:2 p.m.4 views

CVE-2025-11472 SourceCodester Hotel and Lodge Management System edit_room.php sql injection

A flaw has been found in SourceCodester Hotel and Lodge Management System 1.0. This impacts an unknown function of the file /editroom.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used...

7.5CVSS7.2AI score0.00431EPSS
Exploits1References5
CNVD
CNVDadded 2024/12/30 12:0 a.m.3 views

Chat System update_room.php File SQL Injection Vulnerability

Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that originates from insufficient input validation of the id/name/password parameters in the /admin/updateroom.php file. An attacker can use this vulnerability to execute arbitrary SQL commands to obtain sensitiv...

7.5CVSS8.3AI score0.00312EPSS
Exploits0References1
OSV
OSVadded 2023/03/22 12:15 p.m.4 views

CVE-2023-1561

A vulnerability, which was classified as critical, was found in code-projects Simple Online Hotel Reservation System 1.0. Affected is an unknown function of the file addroom.php. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. VDB-223554 is the...

9.8CVSS5.5AI score0.00773EPSS
Exploits0References3
Rows per page
Query Builder