Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hotel management system project hotel management system - vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-41651
A blind SQL injection vulnerability exists in the Raymart DG / Ahmed Helal Hotel-mgmt-system. A malicious attacker can retrieve sensitive database information and interact with the database using the vulnerable cid parameter in process_update_profile.php.
Hotel Management System Project Hotel Management System -
1 Github repository
5.4
CVSSv3
CVE-2022-36254
Multiple persistent cross-site scripting (XSS) vulnerabilities in index.php in tramyardg Hotel Management System 1.0 allow remote malicious users to inject arbitrary web script or HTML via multiple parameters such as "fullname".
Hotel Management System Project Hotel Management System 1.0
9.8
CVSSv3
CVE-2024-25314
Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'sid' parameter in Hotel/admin/show.php?sid=2.
Hotel Management System Project Hotel Management System 1.0
9.8
CVSSv3
CVE-2024-25315
Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'rid' parameter in Hotel/admin/roombook.php?rid=2.
Hotel Management System Project Hotel Management System 1.0
9.8
CVSSv3
CVE-2024-25316
Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'eid' parameter in Hotel/admin/usersettingdel.php?eid=2.
Hotel Management System Project Hotel Management System 1.0
8.8
CVSSv3
CVE-2024-25318
Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in Hotel/admin/print.php?pid=2.
Hotel Management System Project Hotel Management System 1.0
5.4
CVSSv3
CVE-2022-2291
A vulnerability was found in SourceCodester Hotel Management System 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /ci_hms/search of the component Search. The manipulation of the argument search with the input "><script>...
Hotel Management System Project Hotel Management System 2.0
9.8
CVSSv3
CVE-2022-28110
Hotel Management System v1.0 exists to contain a SQL injection vulnerability via the username parameter at the login page.
Hotel Management System Project Hotel Management System 1.0
5.4
CVSSv3
CVE-2022-2292
A vulnerability classified as problematic has been found in SourceCodester Hotel Management System 2.0. Affected is an unknown function of the file /ci_hms/massage_room/edit/1 of the component Room Edit Page. The manipulation of the argument massageroomDetails with the input &quo...
Hotel Management System Project Hotel Management System 2.0
6.1
CVSSv3
CVE-2022-27475
Cross site scripting (XSS) vulnerability in tramyardg hotel-mgmt-system, allows malicious users to execute arbitrary code when when /admin.php is loaded.
Hotel Management System Project Hotel Management System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »