Unrated severityNVD Advisory· Published Sep 16, 2022· Updated Jun 3, 2025
CVE-2021-42949
CVE-2021-42949
Description
The component controlla_login function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass authentication via bruteforce attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- HotelDruid/Hotel Management Softwaredescription
- Range: = 3.0.3
Patches
Vulnerability mechanics
References
2- github.com/dhammon/Securitymitrex_refsource_MISC
- www.hoteldruid.commitrex_refsource_MISC
News mentions
0No linked articles in our index yet.