11 matches found
CVE-2025-0230
CVE-2025-0230 affects code-projects Responsive Hotel Site 1.0; SQL injection arises from an unsafely handled pid parameter in the /admin/print.php function. The vulnerability is exploitable remotely and has been publicly disclosed. Documents consistently describe it as a critical issue with poten...
CVE-2023-1498
The CVE-2023-1498 issue affects code-projects Responsive Hotel Site 1.0, specifically the Newsletter Log Handler’s file messages.php. The vulnerability arises from manipulation of the title argument, leading to SQL injection. It can be exploited remotely, and public exploits have been disclosed. ...
CVE-2024-8219
CVE-2024-8219 affects code-projects Responsive Hotel Site 1.0, with SQL injection in index.php triggered by manipulating name/phone/email parameters. The vulnerability is exploitable remotely, with exploits disclosed publicly. Root cause: unsafely handled user input leading to database query mani...
CVE-2024-11963
CVE-2024-11963 affects code-projects Responsive Hotel Site 1.0. The vulnerability is a SQL injection in the /admin/room.php file caused by improper handling of the troom parameter, which can be exploited remotely. Multiple sources describe an attacker manipulating troom to execute SQL commands an...
CVE-2024-13008
CVE-2024-13008 affects code-projects’ Responsive Hotel Site version 1.0, specifically the function/file /admin/newsletter.php . The vulnerability arises from improper input validation of the eid parameter, enabling a SQL injection. Attacks can be launched remotely, and the exploit has been disclo...
CVE-2025-12856
CVE-2025-12856 affects code-projects Responsive Hotel Site 1.0. The vulnerability lies in the /admin/reservation.php file, where manipulation of the email parameter enables SQL injection. Several connected sources confirm remote exploitation and public availability of an exploit. Provided documen...
CVE-2025-13075
The CVE-2025-13075 affects code-projects Responsive Hotel Site 1.0, specifically the file /admin/usersettingdel.php where the eid parameter is manipulated. The vulnerability is a SQL injection arising from lack of input validation, enabling remote exploitation. Public exploits are noted. Several ...
CVE-2025-12913
CVE-2025-12913 affects code-projects Responsive Hotel Site 1.0. The SQL injection vulnerability arises from mishandling the id argument in /admin/roomdel.php, enabling remote exploitation and potentially exposing sensitive database information. Exploit has been published and may be used. Connecte...
CVE-2025-12855
The CVE-2025-12855 entry covers code-projects Responsive Hotel Site 1.0, where the /admin/newsletterdel.php file is vulnerable. The root cause is lack of validation of the eid parameter, enabling SQL injection with remote exploitation. Multiple connected sources (CNVD, RH Red Hat, NVD mirrors, an...
CVE-2025-12857
The CVE-2025-12857 issue affects code-projects Responsive Hotel Site 1.0 in /admin/roombook.php where manipulating the rid parameter triggers SQL injection. Multiple connected sources corroborate a remote-exploit scenario with publicly disclosed exploit code and the potential to access or modify ...
CVE-2025-13076
The CVE-2025-13076 affects code-projects Responsive Hotel Site 1.0, specifically the /admin/usersetting.php file where manipulation of the usname parameter enables SQL injection. Multiple connected sources (NVD, CNVD, Red Hat, CVE lists, PTSecurity) confirm remote exploitation and that the exploi...