CVE-2024-42556 | Hotel Management System commit 91caab8 admin_room_removed.php room_type sql injection

Posted by Angelo Barbosa | Aug 20, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Hotel Management System commit 91caab8. Affected by this issue is some unknown functionality of the file admin_room_removed.php. The manipulation of the argument room_type leads to sql injection.

This vulnerability is handled as CVE-2024-42556. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-42556 | Hotel Management System commit 91caab8 admin_room_removed.php room_type sql injection

Related Posts

CVE-2023-44250 | Fortinet FortiOS/FortiProxy up to 7.4.1 HA Request privileges management (FG-IR-23-315)

CVE-2023-51497 | Woo Commerce Ship to Multiple Addresses Plugin up to 3.8.9 on WordPress authorization

CVE-2023-49114 | Qognify VMS Client Viewer 7.1 uncontrolled search path

CVE-2024-38441 | Netatalk 3.2.0 etc/afp/directory.c afp_mapname heap-based overflow