CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2025/10/08 12:0 a.m.•1 views

SourceCodester Wedding Reservation Management System SQL注入漏洞

SourceCodester Wedding Reservation Management System is a SourceCodester open source wedding reservation management system. A SQL injection vulnerability exists in SourceCodester Wedding Reservation Management System version 1.0, which stems from an incorrect manipulation of the parameter User in...

9.8CVSS7.8AI score0.00042EPSS

Cvelist•added 2025/10/08 12:0 a.m.•7 views

CVE-2025-60318

SourceCodester Pet Grooming Management Software 1.0 is vulnerable to Cross Site Scripting XSS in /admin/profile.php via the fname First Name and lname Last Name fields...

0.00034EPSS

Exploits1References2

OSV•added 2025/10/07 7:15 p.m.•2 views

CVE-2025-11405

A vulnerability was identified in SourceCodester Hotel and Lodge Management System 1.0. This vulnerability affects unknown code of the file /deltax.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might be...

9.8CVSS5.8AI score

Exploits0References5

NVD•added 2025/10/07 7:15 p.m.•2 views

CVE-2025-11404

A vulnerability was determined in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown part of the file /pages/savetax.php. Executing manipulation of the argument percentage can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...

OSV•added 2025/10/07 7:15 p.m.•1 views

CVE-2025-11404

9.8CVSS5.8AI score0.00044EPSS

CVE•added 2025/10/07 7:2 p.m.•8 views

CVE-2025-11405

CVE-2025-11405 affects SourceCodester Hotel and Lodge Management System 1.0, with the vulnerability in the file /del_tax.php . The issue arises from manipulation of the parameter ID , leading to an SQL injection. The attack is remote and the exploit is publicly available . Documents indicate a co...

9.8CVSS7AI score0.00044EPSS

CVE•added 2025/10/07 6:32 p.m.•7 views

CVE-2025-11404

SourceCodester Hotel and Lodge Management System 1.0 is affected by CVE-2025-11404 due to an SQL injection in the /pages/save_tax.php file, caused by improper handling of the percentage parameter. An attacker can remotely exploit this vulnerability, and public disclosures exist. The vulnerability...

9.8CVSS6.4AI score0.00044EPSS

Cvelist•added 2025/10/07 6:32 p.m.•9 views

CVE-2025-11404 SourceCodester Hotel and Lodge Management System save_tax.php sql injection

6.5CVSS0.00044EPSS

NVD•added 2025/10/07 6:15 p.m.•2 views

CVE-2025-11402

A vulnerability has been found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /delcurr.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been...

NVD•added 2025/10/07 6:15 p.m.•6 views

CVE-2025-11403

A vulnerability was found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this issue is some unknown functionality of the file /delbooking.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE•added 2025/10/07 6:2 p.m.•9 views

CVE-2025-11403

CVE-2025-11403 affects SourceCodester Hotel and Lodge Management System 1.0. The vulnerability is in the file /del_booking.php where manipulation of the ID parameter leads to an SQL injection. It can be exploited remotely, and the exploit has been made public. Several connected sources corroborat...

9.8CVSS6.8AI score0.00044EPSS

NVD•added 2025/10/07 5:15 p.m.•3 views

CVE-2025-11401

A flaw has been found in SourceCodester Hotel and Lodge Management System 1.0. Affected is an unknown function of the file /pages/savecurr.php. This manipulation of the argument currcode causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and ma...

OSV•added 2025/10/07 5:15 p.m.•1 views

CVE-2025-11401

9.8CVSS6.4AI score0.00044EPSS

CVE•added 2025/10/07 5:2 p.m.•9 views

CVE-2025-11401

SourceCodester Hotel and Lodge Management System 1.0 is affected by a SQL injection in the file /pages/save_curr.php via manipulation of the currcode parameter in an unknown function. The vulnerability enables remote exploitation, and public exploits have been published. Multiple sources corrobor...

9.8CVSS6.5AI score0.00044EPSS

NVD•added 2025/10/07 4:15 p.m.•2 views

CVE-2025-11400

A vulnerability was detected in SourceCodester Hotel and Lodge Management System 1.0. This impacts an unknown function of the file /delroom.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit is now public and may be used...

OSV•added 2025/10/07 4:15 p.m.•1 views

CVE-2025-11400

9.8CVSS5.8AI score

Exploits0References5

Cvelist•added 2025/10/07 4:2 p.m.•8 views

CVE-2025-11400 SourceCodester Hotel and Lodge Management System del_room.php sql injection

6.5CVSS0.00044EPSS

Cvelist•added 2025/10/07 3:32 p.m.•9 views

CVE-2025-11399 SourceCodester Hotel and Lodge Management System save_room.php sql injection

A security vulnerability has been detected in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown function of the file /pages/saveroom.php. The manipulation of the argument floorno leads to sql injection. Remote exploitation of the attack is possible. The exploit has bee...

6.5CVSS0.00044EPSS