Lucene search
Veracode Vulnerability DatabaseVERACODE:35261HistoryApr 26, 2022 - 11:59 p.m.
Remote Code Execution (RCE)
2022-04-2623:59:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.017 Low
EPSS
Percentile
87.8%
HotelDruid is vulnerable to remote code execution. The vulnerability exists due to a lack of sanitization allowing an attacker to insert a maliciously crafted payload into the name field under the Create New Room module.
| CPE | Name | Operator | Version |
|---|---|---|---|
| hoteldruid:sid | eq | 3.0.1-1 | |
| hoteldruid:sid | eq | 3.0.1-1 |
Related
packetstorm
packetstorm
Hotel Druid 3.0.3 Remote Code Execution
2022-02-18 00:00:00
githubexploit
githubexploit
Exploit for Code Injection in Digitaldruid Hoteldruid
2022-03-14 17:10:08
Exploit for Code Injection in Digitaldruid Hoteldruid
2022-02-17 17:18:02
zdt
zdt
Hotel Druid 3.0.3 - Remote Code Execution Exploit
2022-02-18 00:00:00
cve
cve
CVE-2022-22909
2022-03-03 00:15:08
debiancve
debiancve
CVE-2022-22909
2022-03-03 00:15:08
ubuntucve
ubuntucve
CVE-2022-22909
2022-03-03 00:00:00
nvd
nvd
CVE-2022-22909
2022-03-03 00:15:08
prion
prion
Remote code execution
2022-03-03 00:15:00
checkpoint_advisories
checkpoint_advisories
DigitalDruid HotelDruid Remote Code Execution (CVE-2022-22909)
2022-11-22 00:00:00
cvelist
cvelist
CVE-2022-22909
2022-03-02 23:49:47
exploitdb
exploitdb
Hotel Druid 3.0.3 - Remote Code Execution (RCE)
2022-02-18 00:00:00