VYPR

Fishing Reservation System

by Fishing Reservation System

CVEs (3)

  • CVE-2020-25763CriSep 30, 2020
    risk 0.64cvss 9.8epss 0.05

    Seat Reservation System version 1.0 suffers from an Unauthenticated File Upload Vulnerability allowing Remote Attackers to gain Remote Code Execution (RCE) on the Hosting Webserver via uploading PHP files.

  • CVE-2020-37081HigFeb 3, 2026
    risk 0.46cvss 7.1epss 0.00

    Fishing Reservation System 7.5 contains multiple remote SQL injection vulnerabilities in admin.php, cart.php, and calendar.php that allow attackers to inject malicious SQL commands. Attackers can exploit vulnerable parameters like uid, pid, type, m, y, and code to compromise the…

  • CVE-2023-43458MedSep 25, 2023
    risk 0.35cvss 5.4epss 0.01

    Cross Site Scripting (XSS) vulnerability in Resort Reservation System v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the room, name, and description parameters in the manage_room function.