CVE-2025-7800 | cgpandey hotelmis up to c572198e6c4780fccc63b1d3e8f3f72f825fc94e HTTP GET Request admin.php Search cross site scripting

A vulnerability classified as problematic was found in cgpandey hotelmis up to c572198e6c4780fccc63b1d3e8f3f72f825fc94e. This vulnerability affects unknown code of the file admin.php of the component HTTP GET Request Handler. The manipulation of the argument Search leads to cross site scripting.

This vulnerability was named CVE-2025-7800. The attack can be initiated remotely. There is no exploit available.

This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.

CVE-2025-7800 | cgpandey hotelmis up to c572198e6c4780fccc63b1d3e8f3f72f825fc94e HTTP GET Request admin.php Search cross site scripting

Post correlati

CVE-2024-1698 | NotificationX Plugin up to 2.8.2 on WordPress sql injection

CVE-2024-27768 | Unitronics Unistream Unilogic prior 1.35.227 path traversal

CVE-2024-11923 | Fortra Application Hub up to 1.2 IAM/Core Service log file

CVE-2021-47289 | Linux Kernel up to 5.4.138/5.10.56/5.13.5 ACPI for_each_acpi_dev_match null pointer dereference