CVE-2024-6116 | itsourcecode Simple Online Hotel Reservation System 1.0 edit_room.php photo unrestricted upload

Inserito da Angelo Barbosa | Giu 18, 2024 | CVE

A vulnerability, which was classified as critical, has been found in itsourcecode Simple Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality of the file edit_room.php. The manipulation of the argument photo leads to unrestricted upload.

This vulnerability is handled as CVE-2024-6116. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-6116 | itsourcecode Simple Online Hotel Reservation System 1.0 edit_room.php photo unrestricted upload

Post correlati

CVE-2024-41916 | HPE ClearPass Policy Manager up to 6.11.8/6.12.1 information disclosure

CVE-2024-42476 | CORDEA oauth up to 0.10 state cross-site request forgery (GHSA-pc9j-53g7-5×54)

CVE-2024-1834 | SourceCodester Simple Student Attendance System 1.0 ?page=attendance&class_id=1 class_date cross site scripting

CVE-2024-4586 | DedeCMS 5.7 shops_delivery.php cross-site request forgery