Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hotel management system project hotel management system - vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-41651
A blind SQL injection vulnerability exists in the Raymart DG / Ahmed Helal Hotel-mgmt-system. A malicious attacker can retrieve sensitive database information and interact with the database using the vulnerable cid parameter in process_update_profile.php.
Hotel Management System Project Hotel Management System -
1 Github repository
NA
CVE-2024-25314
Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'sid' parameter in Hotel/admin/show.php?sid=2.
Hotel Management System Project Hotel Management System 1.0
NA
CVE-2024-25315
Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'rid' parameter in Hotel/admin/roombook.php?rid=2.
Hotel Management System Project Hotel Management System 1.0
NA
CVE-2024-25316
Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'eid' parameter in Hotel/admin/usersettingdel.php?eid=2.
Hotel Management System Project Hotel Management System 1.0
NA
CVE-2024-25318
Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in Hotel/admin/print.php?pid=2.
Hotel Management System Project Hotel Management System 1.0
4.3
CVSSv2
CVE-2022-27475
Cross site scripting (XSS) vulnerability in tramyardg hotel-mgmt-system, allows malicious users to execute arbitrary code when when /admin.php is loaded.
Hotel Management System Project Hotel Management System 1.0
3.5
CVSSv2
CVE-2022-2292
A vulnerability classified as problematic has been found in SourceCodester Hotel Management System 2.0. Affected is an unknown function of the file /ci_hms/massage_room/edit/1 of the component Room Edit Page. The manipulation of the argument massageroomDetails with the input &quo...
Hotel Management System Project Hotel Management System 2.0
7.5
CVSSv2
CVE-2022-28110
Hotel Management System v1.0 exists to contain a SQL injection vulnerability via the username parameter at the login page.
Hotel Management System Project Hotel Management System 1.0
4.3
CVSSv2
CVE-2022-2291
A vulnerability was found in SourceCodester Hotel Management System 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /ci_hms/search of the component Search. The manipulation of the argument search with the input "><script>...
Hotel Management System Project Hotel Management System 2.0
NA
CVE-2022-36254
Multiple persistent cross-site scripting (XSS) vulnerabilities in index.php in tramyardg Hotel Management System 1.0 allow remote malicious users to inject arbitrary web script or HTML via multiple parameters such as "fullname".
Hotel Management System Project Hotel Management System 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »