Vulnerabilities (CVE)

Filtered by vendor Bestsoftinc Subscribe
Filtered by product Online Hotel Booking System
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-20125 1 Bestsoftinc 1 Online Hotel Booking System 2024-11-21 7.5 HIGH 6.3 MEDIUM
A vulnerability classified as critical was found in Online Hotel Booking System Pro 1.2. Affected by this vulnerability is an unknown functionality of the file /roomtype-details.php. The manipulation of the argument tid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2017-20124 1 Bestsoftinc 1 Online Hotel Booking System 2024-11-21 6.5 MEDIUM 6.3 MEDIUM
A vulnerability classified as critical has been found in Online Hotel Booking System Pro Plugin 1.0. Affected is an unknown function of the file /front/roomtype-details.php. The manipulation of the argument tid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.