CNNVD-202601-4929 Information

CNNVD ID

CNNVD-202601-4929

Related CVE

CVE-2020-37008

• CNNVD Published: 2026-01-29

Description (Chinese)

EasyPMS是美国EasyPMS公司的一个酒店管理系统。 EasyPMS 1.0.0版本存在安全漏洞，该漏洞源于JSON请求中的SQL查询存在输入验证不足，可能导致身份验证绕过。

Description (English)

EASYPMS is a hotel management system of the United States company EASYPMS. EasyPMS version 1.0.0 contains a security loophole, which stems from the lack of input authentication of the SQL queries in the JSON request, which may result in the identification being bypassed.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

EasyPMS

Published

2026-01-29

Last Modified

2026-02-24

References

https://www.elektraweb.com/en/ https://www.exploit-db.com/exploits/48858 https://www.vulncheck.com/advisories/easypms-authentication-bypass