VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Jun 22, 2015· Updated May 6, 2026

CVE-2015-4713

CVE-2015-4713

Description

SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote editors to execute arbitrary SQL commands via the pid parameter to index.php.

Affected products

10
  • Apphp/Hotel Site10 versions
    cpe:2.3:a:apphp:hotel_site:3.0.9:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:apphp:hotel_site:3.0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.7.5:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.8.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apphp:hotel_site:3.9.1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.