CVE-2025-12857 | code-projects Responsive Hotel Site 1.0 /admin/roombook.php rid sql injection

Inserito da Angelo Barbosa | Nov 7, 2025 | CVE

A vulnerability labeled as critical has been found in code-projects Responsive Hotel Site 1.0. The affected element is an unknown function of the file /admin/roombook.php. Such manipulation of the argument rid leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-12857. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2025-12857 | code-projects Responsive Hotel Site 1.0 /admin/roombook.php rid sql injection

Post correlati

CVE-2023-50930 | Savignano SNotify up to 4.0.1 on Jira cross-site request forgery

CVE-2023-22655 | Intel Xeon SGX/TDX protection mechanism (intel-sa-00960)

CVE-2024-28757 | libexpat up to 2.6.1 XML_ExternalEntityParserCreate xml external entity reference (Issue 839)

CVE-2024-40240 | HomeServe Home Repair App 3.3.4 on Android Fingerprint Authentication access control