Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
DigitaldruidHoteldruid3.0.3

3 matches found

CVE
CVEadded 2022/03/03 12:15 a.m.99 views

CVE-2022-22909

HotelDruid v3.0.3 was discovered to contain a remote code execution (RCE) vulnerability which is exploited via an attacker inserting a crafted payload into the name field under the Create New Room module.

8.8CVSS8.8AI score0.33104EPSS
CVE
CVEadded 2022/04/26 11:15 p.m.73 views

CVE-2022-26564

HotelDruid Hotel Management Software v3.0.3 contains a cross-site scripting (XSS) vulnerability via the prezzoperiodo4 parameter in creaprezzi.php.

6.1CVSS5.9AI score0.00684EPSS
CVE
CVEadded 2022/09/16 3:15 p.m.62 views

CVE-2021-42949

The component controlla_login function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass authentication via bruteforce attacks.

9.8CVSS9.5AI score0.37381EPSS