CVE-2025-8470 | SourceCodester Online Hotel Reservation System 1.0 /admin/deleteroom.php ID sql injection

Inserito da Angelo Barbosa | Ago 1, 2025 | CVE

A vulnerability classified as critical was found in SourceCodester Online Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /admin/deleteroom.php. The manipulation of the argument ID leads to sql injection.

This vulnerability was named CVE-2025-8470. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-8470 | SourceCodester Online Hotel Reservation System 1.0 /admin/deleteroom.php ID sql injection

Post correlati

CVE-2025-5212 | PHPGurukul Employee Record Management System 1.3 /admin/editempexp.php emp1name sql injection

CVE-2023-5117 | GitLab Community Edition/Enterprise Edition up to 17.5.x exposure of sensitive information due to incompatible policies

CVE-2025-1892 | shishuocms 1.1 Directory Deletion Page /manage/folder/add.json folderName cross site scripting

CVE-2023-47848 | Tainacan Plugin up to 0.20.4 on WordPress cross site scripting