| Título | arnobt78 Hotel Booking Management System 1 Information Disclosure |
|---|
| Descrição | The Hotel Booking Management System exposes a detailed health check endpoint /api/health/detailed that returns extensive system information without requiring authentication.
This information can be leveraged by attackers for reconnaissance, targeted exploitation, and infrastructure mapping.
|
|---|
| Fonte | ⚠️ https://github.com/sudo-secure/security-research/blob/main/Hotel-Booking-Management-System/sensitive-information-disclosure/PoC.md |
|---|
| Utilizador | sudosme (UID 96548) |
|---|
| Submissão | 24/03/2026 16h10 (há 1 mês) |
|---|
| Moderação | 17/04/2026 09h24 (24 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 358036 [arnobt78 Hotel Booking Management System até f8922d0e0f6ac1cc761974c7616f44c2bbc04bea Health Check Endpoint /api/health/detailed Divulgação de Informação] |
|---|
| Pontos | 17 |
|---|