HotelDruid is vulnerable to remote code execution. The vulnerability exists due to a lack of sanitization allowing an attacker to insert a maliciously crafted payload into the name field under the Create New Room module.
CPE | Name | Operator | Version |
---|---|---|---|
hoteldruid:sid | eq | 3.0.1-1 | |
hoteldruid:sid | eq | 3.0.1-1 |