← back
CVE-2025-10621

SourceCodester Hotel Reservation System editroomimage.php sql injection

CVSS 6.9 MEDIUMEPSS 0.4%CWE-74CWE-89
A vulnerability was determined in SourceCodester Hotel Reservation System 1.0. The affected element is an unknown function of the file editroomimage.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
Affected products
SourceCodester · Hotel Reservation System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/aCas1o/cve_report/blob/main/report.mdhttps://vuldb.com/?ctiid.324650https://vuldb.com/?id.324650https://vuldb.com/?submit.650218https://www.sourcecodester.com/