| 제목 | itsourcecode Free Hotel Reservation System V1.0 SQ |
|---|
| 설명 | During the security review of the "Free Hotel Reservation System", a critical SQL injection vulnerability was discovered in the file /admin/mod_amenities/index.php?view=view&id=1. This vulnerability is due to insufficient validation of the user‑supplied idparameter, which allows an attacker to inject malicious SQL queries. As a result, the attacker can gain unauthorized access to the database, modify or delete data, and retrieve sensitive information. Immediate remedial action is required to ensure system security and data integrity. |
|---|
| 원천 | ⚠️ https://github.com/bybinyu/Vulnerability-Practice/issues/6 |
|---|
| 사용자 | binyu (UID 96262) |
|---|
| 제출 | 2026. 03. 11. AM 06:45 (28 날 ago) |
|---|
| 모더레이션 | 2026. 03. 27. PM 03:19 (16 days later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 349708 [itsourcecode Free Hotel Reservation System 1.0 index.php?view=edit amen_id/rmtype_id SQL 주입] |
|---|
| 포인트들 | 0 |
|---|