CNNVD-202506-2898 Information
CNNVD ID
CNNVD-202506-2898
Related CVE
- CNNVD Published: 2025-06-22
Description (Chinese)
Code-Projects Simple Online Hotel Reservation System是Code-Projects开源的一个简单的在线酒店预订系统。 code-projects Simple Online Hotel Reservation System 1.0版本存在注入漏洞,该漏洞源于文件/admin/delete_pending.php中参数transaction_id的错误操作导致SQL注入。
Description (English)
Code-Projects Online Hotel Supply System is a simple online hotel reservation system open to Code-Projects. There is an injection loophole in version 1.0 of code-projects Simple Online Hotline Supply System, which results from the error of the parameter transaction id in the document/admin/delete pending.php.
Hazard Level
Medium
Vulnerability Type
注入
Affected Vendor
Code-Projects
Published
2025-06-22
Last Modified
2026-02-24
References
https://vuldb.com/?submit.598589 https://code-projects.org/ https://vuldb.com/?id.313558 https://github.com/zzb1388/cve/issues/11 https://vuldb.com/?ctiid.313558 https://access.redhat.com/security/cve/cve-2025-6451
Share on: