CNNVD-202510-931 Information

Oct 07, 2025 cve

CNNVD ID

CNNVD-202510-931

CVE-2025-11399

CNNVD Published: 2025-10-07

Description (Chinese)

SourceCodester Hotel and Lodge Management System是SourceCodester开源的一套酒店和旅馆管理系统。 SourceCodester Hotel and Lodge Management System 1.0版本存在安全漏洞，该漏洞源于对文件/pages/save_room.php中参数floorno的错误操作，可能导致SQL注入攻击。

Description (English)

ourceCodesterHotel and Lodge Management System is the open-source hotel and hotel management system ofourceCodester. The security loophole in version 1.0 of SourceCodester Hotel and Lodge Management System stems from the error of the parameter floorno in the document/pages/save room.php, which could lead to an attack on SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

SourceCodester

Published

2025-10-07

Last Modified

2026-02-24

References

https://github.com/bdrfly/cve/issues/2 https://vuldb.com/?ctiid.327336 https://vuldb.com/?id.327336 https://vuldb.com/?submit.665055 https://www.sourcecodester.com/ https://access.redhat.com/security/cve/cve-2025-11399

Share on: