Filtered by vendor Hotel Management System Project
Subscribe
Filtered by product Hotel Management System
Subscribe
Total
10 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-48090 | 1 Hotel Management System Project | 1 Hotel Management System | 2025-04-07 | N/A | 6.5 MEDIUM |
| Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to SQL Injection via /app/dao/CustomerDAO.php. | |||||
| CVE-2022-48091 | 1 Hotel Management System Project | 1 Hotel Management System | 2025-04-07 | N/A | 5.4 MEDIUM |
| Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to Cross Site Scripting (XSS) via process_update_profile.php. | |||||
| CVE-2024-25318 | 1 Hotel Management System Project | 1 Hotel Management System | 2024-11-21 | N/A | 8.8 HIGH |
| Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in Hotel/admin/print.php?pid=2. | |||||
| CVE-2024-25316 | 1 Hotel Management System Project | 1 Hotel Management System | 2024-11-21 | N/A | 9.8 CRITICAL |
| Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'eid' parameter in Hotel/admin/usersettingdel.php?eid=2. | |||||
| CVE-2024-25315 | 1 Hotel Management System Project | 1 Hotel Management System | 2024-11-21 | N/A | 9.8 CRITICAL |
| Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'rid' parameter in Hotel/admin/roombook.php?rid=2. | |||||
| CVE-2024-25314 | 1 Hotel Management System Project | 1 Hotel Management System | 2024-11-21 | N/A | 9.8 CRITICAL |
| Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'sid' parameter in Hotel/admin/show.php?sid=2. | |||||
| CVE-2022-36254 | 1 Hotel Management System Project | 1 Hotel Management System | 2024-11-21 | N/A | 5.4 MEDIUM |
| Multiple persistent cross-site scripting (XSS) vulnerabilities in index.php in tramyardg Hotel Management System 1.0 allow remote attackers to inject arbitrary web script or HTML via multiple parameters such as "fullname". | |||||
| CVE-2022-28110 | 1 Hotel Management System Project | 1 Hotel Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
| Hotel Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at the login page. | |||||
| CVE-2022-27475 | 1 Hotel Management System Project | 1 Hotel Management System | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Cross site scripting (XSS) vulnerability in tramyardg hotel-mgmt-system, allows attackers to execute arbitrary code when when /admin.php is loaded. | |||||
| CVE-2021-41651 | 1 Hotel Management System Project | 1 Hotel Management System | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
| A blind SQL injection vulnerability exists in the Raymart DG / Ahmed Helal Hotel-mgmt-system. A malicious attacker can retrieve sensitive database information and interact with the database using the vulnerable cid parameter in process_update_profile.php. | |||||