CNNVD-202509-3744 Information
CNNVD ID
CNNVD-202509-3744
Related CVE
- CNNVD Published: 2025-09-23
Description (Chinese)
Code-Projects Online Hotel Reservation System In PHP是Code-Projects开源的一个在线酒店预订系统。 Code-Projects Online Hotel Reservation System In PHP 1.0版本存在SQL注入漏洞,该漏洞源于对文件/reservation/paypalpayout.php中参数confirm的错误操作,可能导致SQL注入攻击。
Description (English)
Code-Projects Online Supply System In PHP is an online hotel reservation system open to Code-Projects. The Code-Projects Online Supply System In PHP Version 1.0 contains an injection loophole in SQL, which is the result of an error in the use of the parameter confirm in the file/reservation/paypalpayout.php, which could have led to an attack on SQL.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Code::Blocks
Published
2025-09-23
Last Modified
2026-02-24
References
https://github.com/xingrenlvke/cve/issues/10 https://vuldb.com/?ctiid.325205 https://vuldb.com/?id.325205 https://vuldb.com/?submit.657389
Share on: