Online Resort Management System
CVEs (26)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-36941 | Low | 0.18 | 2.7 | 0.00 | Apr 13, 2026 | Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL Injection in the file /orms/admin/rooms/manage_room.php. | ||
| CVE-2026-26884 | 0.00 | — | 0.00 | Mar 3, 2026 | Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/admin/appointments/view_appointment.php. | |||
| CVE-2026-26883 | 0.00 | — | 0.00 | Mar 3, 2026 | Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/classes/Master.php?f=delete_appointment. | |||
| CVE-2026-26886 | 0.00 | — | 0.00 | Mar 3, 2026 | Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /admin/services/manage_service.php. | |||
| CVE-2026-26885 | 0.00 | — | 0.00 | Mar 3, 2026 | Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /classes/Master.php?f=delete_service. | |||
| CVE-2025-5208 | 0.00 | — | 0.00 | May 26, 2025 | A vulnerability, which was classified as critical, was found in SourceCodester Online Hospital Management System 1.0. This affects an unknown part of the file /admin/check_availability.php. The manipulation of the argument emailid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. |
- risk 0.18cvss 2.7epss 0.00
Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL Injection in the file /orms/admin/rooms/manage_room.php.
- CVE-2026-26884Mar 3, 2026risk 0.00cvss —epss 0.00
Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/admin/appointments/view_appointment.php.
- CVE-2026-26883Mar 3, 2026risk 0.00cvss —epss 0.00
Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/classes/Master.php?f=delete_appointment.
- CVE-2026-26886Mar 3, 2026risk 0.00cvss —epss 0.00
Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /admin/services/manage_service.php.
- CVE-2026-26885Mar 3, 2026risk 0.00cvss —epss 0.00
Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /classes/Master.php?f=delete_service.
- CVE-2025-5208May 26, 2025risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, was found in SourceCodester Online Hospital Management System 1.0. This affects an unknown part of the file /admin/check_availability.php. The manipulation of the argument emailid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Page 2 of 2