VYPR
Unrated severityNVD Advisory· Published Jun 22, 2015· Updated Jun 17, 2026

CVE-2015-4713

CVE-2015-4713

Description

SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote editors to execute arbitrary SQL commands via the pid parameter to index.php.

Affected products

11
  • Apphp/Hotel Site11 versions
    cpe:2.3:a:apphp:hotel_site:3.0.9:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:apphp:hotel_site:3.0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.7.5:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.8.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.9.1:*:*:*:*:*:*:*
    • (no CPE)range: 3.x.x

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.