CNNVD-202507-3007 Information

CNNVD ID

CNNVD-202507-3007

Related CVE

CVE-2025-4296

• CNNVD Published: 2025-07-23

Description (Chinese)

HotelRunner B2B是土耳其HotelRunner公司的一个为酒店行业提供业务管理与合作的软件工具。 HotelRunner B2B 04.06.2025之前版本存在输入验证错误漏洞，该漏洞源于URL重定向，可能导致强制浏览。

Description (English)

HotelRunner B2B is a software tool for business management and cooperation with the hotel industry at HotelRunner, Turkey. Prior to the HotelRunner B2B-04.06.2025 version, there was an input authentication error loophole, which originated in the re-direction of the URL and could lead to forced browsing.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

HotelRunner

Published

2025-07-23

Last Modified

2026-02-24

References

https://www.usom.gov.tr/bildirim/tr-25-0169

Patch

https://hotelrunner.com/en/