Sourcecodester Hotel and Lodge Management System 2.0 is vulnerable to unauthenticated SQL injection and can allow remote attackers to execute arbitrary SQL commands via the email parameter to the edit page for Customer, Room, Currency, Room Booking Details, or Tax Details.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/hitIer/web_test/tree/master/hotel |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-01T18:21:53
Updated: 2024-08-04T14:22:25.545Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-21012
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-10-01T19:15:06.820
Modified: 2024-11-21T05:12:22.277
Link: CVE-2020-21012
Redhat
No data.