VYPR

Online Hotel Reservation System

by Sourcecodester

CVEs (21)

  • CVE-2021-41471CriJan 24, 2022
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in Sourcecodester South Gate Inn Online Reservation System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the email and Password parameters.

  • CVE-2021-46308CriJan 21, 2022
    risk 0.64cvss 9.8epss 0.02

    An SQL Injection vulnerability exists in Sourcecodester Online Railway Reservation Sysytem 1.0 via the sid parameter.

  • CVE-2025-11055HigSep 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in SourceCodester Online Hotel Reservation System 1.0. Affected is an unknown function of the file /admin/updateaddress.php. The manipulation of the argument address results in sql injection. The attack may be launched remotely. The exploit is now…

  • CVE-2025-10789HigSep 22, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in SourceCodester Online Hotel Reservation System 1.0. The impacted element is an unknown function of the file deleteslide.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit…

  • CVE-2025-10788HigSep 22, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in SourceCodester Online Hotel Reservation System 1.0. The affected element is an unknown function of the file deleteroominventory.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The…

  • CVE-2025-10623HigSep 17, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in SourceCodester Hotel Reservation System 1.0. The impacted element is an unknown function of the file deleteuser.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit is…

  • CVE-2025-10621HigSep 17, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in SourceCodester Hotel Reservation System 1.0. The affected element is an unknown function of the file editroomimage.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2025-9790HigSep 1, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in SourceCodester Hotel Reservation System 1.0. This affects an unknown part of the file /admin/updateabout.php. The manipulation of the argument address results in sql injection. The attack may be launched remotely. The exploit has been…

  • CVE-2025-9789HigSep 1, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in SourceCodester Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality of the file /admin/edituser.php. The manipulation of the argument userid leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2025-8470HigAug 2, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability classified as critical was found in SourceCodester Online Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /admin/deleteroom.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely.…

  • CVE-2025-8469HigAug 2, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability classified as critical has been found in SourceCodester Online Hotel Reservation System 1.0. This affects an unknown part of the file /admin/deletegallery.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack…

  • CVE-2025-6355HigJun 20, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in SourceCodester Online Hotel Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/execeditroom.php. The manipulation of the argument userid leads to sql injection. The attack can be…

  • CVE-2024-10413MedOct 27, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, has been found in SourceCodester Online Hotel Reservation System 1.0. Affected by this issue is the function upload of the file /guest/update.php. The manipulation of the argument image leads to unrestricted upload. The attack…

  • CVE-2024-10411MedOct 27, 2024
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in SourceCodester Online Hotel Reservation System 1.0. It has been classified as critical. Affected is the function doCancelRoom/doCancel/doConfirm/doCancel/doCheckin/doCheckout of the file /marimar/admin/mod_room/controller.php. The manipulation of the…

  • CVE-2024-10410MedOct 27, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical was found in SourceCodester Online Hotel Reservation System 1.0. Affected by this vulnerability is the function upload of the file /admin/mod_room/controller.php?action=add. The manipulation of the argument image leads to unrestricted…

  • CVE-2024-9297MedSep 28, 2024
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/. The manipulation of the argument page with the input trains/schedules/system_info…

  • CVE-2024-9321MedSep 29, 2024
    risk 0.34cvss 5.3epss 0.01

    A vulnerability was found in SourceCodester Online Railway Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/view_details.php. The manipulation of the argument id leads to improper access controls. The…

  • CVE-2024-9300MedSep 28, 2024
    risk 0.28cvss 4.3epss 0.01

    A vulnerability classified as problematic was found in SourceCodester Online Railway Reservation System 1.0. This vulnerability affects unknown code of the file contact_us.php of the component Message Us Form. The manipulation of the argument fullname/email/message leads to…

  • CVE-2024-9298MedSep 28, 2024
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /?page=tickets of the component Ticket Handler. The manipulation of the argument id leads to…

  • CVE-2024-9299LowSep 28, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability classified as problematic has been found in SourceCodester Online Railway Reservation System 1.0. This affects an unknown part of the file /?page=reserve. The manipulation of the argument First Name/Middle Name/Last Name leads to cross site scripting. It is…

Page 1 of 2