CVE-2025-11055 | SourceCodester Online Hotel Reservation System 1.0 /admin/updateaddress.php address sql injection

Inserito da Angelo Barbosa | Set 26, 2025 | CVE

A vulnerability was found in SourceCodester Online Hotel Reservation System 1.0. It has been declared as critical. Affected is an unknown function of the file /admin/updateaddress.php. The manipulation of the argument address results in sql injection.

This vulnerability is cataloged as CVE-2025-11055. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-11055 | SourceCodester Online Hotel Reservation System 1.0 /admin/updateaddress.php address sql injection

Post correlati

CVE-2024-34170 | Intel Graphics Drivers improper sanitization of custom special characters (intel-sa-01132)

CVE-2024-41911 | HP Poly Clariti Manager up to 10.10.2.2 cross site scripting

CVE-2024-49350 | IBM DB2/DB2 Connect Server up to 11.1.4.7/11.5.9/12.1.1 Query stack-based overflow

CVE-2025-0400 | StarSea99 starsea-mall 1.0 /admin/categories/update categoryName cross site scripting