CVE-2019-25527 | Inoutscripts Inout EasyRooms Ultimate Edition 1.0 search/searchdetailed numguest sql injection (Exploit 46630)

Inserito da Angelo Barbosa | Mar 12, 2026 | CVE

A vulnerability described as critical has been identified in Inoutscripts Inout EasyRooms Ultimate Edition 1.0. Affected is an unknown function of the file search/searchdetailed. The manipulation of the argument numguest results in sql injection.

This vulnerability is reported as CVE-2019-25527. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2019-25527 | Inoutscripts Inout EasyRooms Ultimate Edition 1.0 search/searchdetailed numguest sql injection (Exploit 46630)

Post correlati

CVE-2021-46932 | Linux Kernel up to 5.15.12 appletouch __flush_work initialization

CVE-2025-4517 | Python CPython up to 3.14.0b1 TarFile.extractall/TarFile.extract path traversal (Issue 135034)

CVE-2025-47030 | Adobe Experience Manager up to 6.5.22 cross site scripting (apsb25-48)

CVE-2025-0498 | Rockwell Automation FactoryTalk AssetCentre prior 15.00.001 insufficiently protected credentials