Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

seat-reservation-system vulnerabilities and exploits

(subscribe to this query)

7.5
CVSSv2
CVE-2020-25763
Seat Reservation System version 1.0 suffers from an Unauthenticated File Upload Vulnerability allowing Remote Attackers to gain Remote Code Execution (RCE) on the Hosting Webserver via uploading PHP files....
Seat Reservation System Project Seat Reservation System 1.0
6.4
CVSSv2
CVE-2020-25762
An issue was discovered in SourceCodester Seat Reservation System 1.0. The file admin_class.php does not perform input validation on the username and password parameters. An attacker can send malicious input in the post request to /admin/ajax.php?action=login and bypass...
Seat Reservation System Project Seat Reservation System 1.0
5
CVSSv2
CVE-2020-36002
Seat-Reservation-System 1.0 has a SQL injection vulnerability in index.php in the id and file parameters where attackers can obtain sensitive database information....
Seat-reservation-system Project Seat-reservation-system 1.0
7.5
CVSSv2
CVE-2020-29284
The file view-chair-list.php in Multi Restaurant Table Reservation System 1.0 does not perform input validation on the table_id parameter which allows unauthenticated SQL Injection. An attacker can send malicious input in the GET request to...
Multi Restaurant Table Reservation System Project Multi Restaurant Table Reservation System 1.0
6.5
CVSSv2
CVE-2020-26773
Restaurant Reservation System 1.0 suffers from an authenticated SQL injection vulnerability, which allows a remote, authenticated attacker to execute arbitrary SQL commands via the date parameter in includes/reservation.inc.php....
Restaurant Reservation System Project Restaurant Reservation System 1.0
7.5
CVSSv2
CVE-2008-4204
SQL injection vulnerability in city.asp in SoftAcid Hotel Reservation System (HRS) allows remote attackers to execute arbitrary SQL commands via the city parameter....
Softacid Hotel Reservation System
4.3
CVSSv2
CVE-2008-0774
Cross-site scripting (XSS) vulnerability in search.cgi in Loris Hotel Reservation System 3.01 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the hotel_name parameter. NOTE: the provenance of this information is unknown; the details are...
Loris Hotel Reservation System
7.5
CVSSv2
CVE-2008-3266
SQL injection vulnerability in picture_pic_bv.asp in SoftAcid Hotel Reservation System (HRS) Multi allows remote attackers to execute arbitrary SQL commands via the key parameter....
Softacid Hotel Reservation System Multi
10
CVSSv2
CVE-2007-6011
Unspecified vulnerability in main.php of BugHotel Reservation System before 4.9.9 P3 allows remote attackers to bypass authentication and gain administrative access via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely...
Bug Software Bughotel Reservation System
7.5
CVSSv2
CVE-2015-7235
Multiple SQL injection vulnerabilities in dex_reservations.php in the CP Reservation Calendar plugin before 1.1.7 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in a dex_reservations_calendar_load2 action or (2) dex_item parameter...
Cp Reservation Calender Project Cp Reservation Calender
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
unspecifiedbuffer overflowCVE-2021-0404microsoftrace conditionCVE-2021-23965CVE-2021-21298CVE-2021-24093CVE-2021-21724CVE-2021-25281.net