Product
jayesh hotel management system
38 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-63949
CVE-2025-4500
CVE-2024-12186
CVE-2024-12185
CVE-2024-42773
CVE-2024-42767
CVE-2024-42776
CVE-2024-42775
CVE-2024-42774
CVE-2024-42772
CVE-2024-42768
CVE-2024-42771
CVE-2024-42770
CVE-2024-42769
CVE-2024-42558
CVE-2024-42557
CVE-2024-42556
CVE-2024-42555
CVE-2024-42554
CVE-2024-42553
CVE-2024-42552
CVE-2024-25318
CVE-2024-25316
CVE-2024-25315
CVE-2024-25314
CVE-2023-49272
CVE-2023-49271
CVE-2023-49270
CVE-2023-49269
CVE-2023-3616
CVE-2022-48091
CVE-2022-48090
CVE-2022-36254
CVE-2022-2292
CVE-2022-2291
CVE-2022-28110
CVE-2022-27475
CVE-2021-41651
all versions
A Reflected Cross-Site Scripting (XSS) vulnerability in yohanawi Hotel Management System (commit 87e004a) allows a remote attacker
all versions
A vulnerability, which was classified as critical, has been found in code-projects Hotel Management System 1.0. Affected by this i
all versions
A vulnerability was found in code-projects Hotel Management System 1.0 and classified as problematic. This issue affects some unkn
all versions
A vulnerability has been found in code-projects Hotel Management System 1.0 and classified as problematic. This vulnerability affe
all versions
An Incorrect Access Control vulnerability was found in /admin/edit_room_controller.php in Kashipara Hotel Management System v1.0,
all versions
Kashipara Hotel Management System v1.0 is vulnerable to Unrestricted File Upload RCE via /admin/add_room_controller.php.
all versions
Kashipara Hotel Management System v1.0 is vulnerable to Incorrect Access Control via /admin/users.php.
all versions
An Incorrect Access Control vulnerability was found in /admin/add_room_controller.php in Kashipara Hotel Management System v1.0, w
all versions
An Incorrect Access Control vulnerability was found in /admin/delete_room.php in Kashipara Hotel Management System v1.0, which all
all versions
An Incorrect Access Control vulnerability was found in /admin/rooms.php in Kashipara Hotel Management System v1.0, which allows an
all versions
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Hotel Management System v1.0 via /admin/delete_room.php.
all versions
A Stored Cross Site Scripting (XSS) vulnerability was found in " /admin/edit_room_controller.php" of the Kashipara Hotel Managemen
all versions
A Stored Cross Site Scripting (XSS) vulnerability was found in "/core/signup_user.php" of Kashipara Hotel Management System v1.0,
all versions
A Reflected Cross Site Scripting (XSS) vulnerability was found in "/core/signup_user.php " of Kashipara Hotel Management System v1
<= 2020-06-10
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the book_id parameter at admin_
<= 2020-06-10
A Cross-Site Request Forgery (CSRF) in the component admin_modify_room.php of Hotel Management System commit 91caab8 allows attack
<= 2020-06-10
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the room_type parameter at admi
<= 2020-06-10
A Cross-Site Request Forgery (CSRF) in the component admin_room_removed.php of Hotel Management System commit 91caab8 allows attac
<= 2020-06-10
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the room_type parameter at admi
<= 2020-06-10
A Cross-Site Request Forgery (CSRF) in the component admin_room_added.php of Hotel Management System commit 91caab8 allows attacke
<= 2020-06-10
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the book_id parameter at admin_
all versions
Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in Hotel/admin/print.php?pid=2.
all versions
Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'eid' parameter in Hotel/admin/usersettingdel.php?eid=2.
all versions
Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'rid' parameter in Hotel/admin/roombook.php?rid=2.
all versions
Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'sid' parameter in Hotel/admin/show.php?sid=2.
all versions
Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'children' param
all versions
Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'check_out_date'
all versions
Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'check_in_date'
all versions
Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'adults' paramet
< 2.0
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mava Software Hotel Manageme
all versions
Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to Cross Site Scripting (XSS) via process_update_profile.php.
all versions
Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to SQL Injection via /app/dao/CustomerDAO.php.
all versions
Multiple persistent cross-site scripting (XSS) vulnerabilities in index.php in tramyardg Hotel Management System 1.0 allow remote
all versions
A vulnerability classified as problematic has been found in SourceCodester Hotel Management System 2.0. Affected is an unknown fun
all versions
A vulnerability was found in SourceCodester Hotel Management System 2.0. It has been rated as problematic. This issue affects some
all versions
Hotel Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at the login page.
all versions
Cross site scripting (XSS) vulnerability in tramyardg hotel-mgmt-system, allows attackers to execute arbitrary code when /adm
all versions
A blind SQL injection vulnerability exists in the Raymart DG / Ahmed Helal Hotel-mgmt-system. A malicious attacker can retrieve se