Submit #777392: itsourcecode Free Hotel Reservation System V1.0 SQinfo

Titleitsourcecode Free Hotel Reservation System V1.0 SQ
DescriptionDuring the security review of the "Free Hotel Reservation System", a critical SQL injection vulnerability was discovered in the file /admin/mod_amenities/index.php?view=view&id=1. This vulnerability is due to insufficient validation of the user‑supplied idparameter, which allows an attacker to inject malicious SQL queries. As a result, the attacker can gain unauthorized access to the database, modify or delete data, and retrieve sensitive information. Immediate remedial action is required to ensure system security and data integrity.
Source⚠️ https://github.com/bybinyu/Vulnerability-Practice/issues/6
User
 binyu (UID 96262)
Submission03/11/2026 06:45 (4 months ago)
Moderation03/27/2026 15:19 (16 days later)
StatusDuplicate
VulDB entry349708 [itsourcecode Free Hotel Reservation System 1.0 index.php?view=edit amen_id/rmtype_id sql injection]
Points0

Interested in the pricing of exploits?

See the underground prices here!