| Vendor | Product | Version Range | Status |
|---|---|---|---|
| itsourcecode | Online Hotel Management System | 1.0 | affected |
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| itsourcecode | Online Hotel Management System | 1.0 | cpe:2.3:a:itsourcecode:online_hotel_management_system:*:*:*:*:*:*:*:* |
| # | POC Description | Source Link | Shenlong Link |
|---|
| CVE-2026-13555 | 7.3 HIGH | itsourcecode Online Hotel Management System controller.php add sql injection |
| CVE-2026-13552 | 7.3 HIGH | itsourcecode Online Hotel Management System controller.php edit sql injection |
| CVE-2026-13551 | 7.3 HIGH | itsourcecode Baptism Information Management System editBaptism.php sql injection |
| CVE-2026-13550 | 7.3 HIGH | itsourcecode Baptism Information Management System delbaptism.php sql injection |
| CVE-2026-13520 | 6.3 MEDIUM | itsourcecode Hospital Management System Appointment appointmentapproval.php sql injection |
| CVE-2026-13579 | 6.3 MEDIUM | itsourcecode Hospital Management System patientchangepassword.php sql injection |
| CVE-2026-13530 | 6.3 MEDIUM | itsourcecode Hospital Management System Appointment appointmentdetail.php sql injection |
| CVE-2026-13531 | 6.3 MEDIUM | itsourcecode Hospital Management System department.php sql injection |
| CVE-2026-13532 | 6.3 MEDIUM | itsourcecode Hospital Management System departmentDoctor.php sql injection |
| CVE-2026-13541 | 6.3 MEDIUM | itsourcecode Hospital Management System doctorchangepassword.php sql injection |
| CVE-2026-13542 | 6.3 MEDIUM | itsourcecode Hospital Management System doctorprofile.php sql injection |
| CVE-2026-13548 | 6.3 MEDIUM | itsourcecode Hospital Management System doctortimings.php sql injection |
| CVE-2026-13572 | 6.3 MEDIUM | itsourcecode Hospital Management System insertbillingrecord.php sql injection |
| CVE-2026-13578 | 6.3 MEDIUM | itsourcecode Hospital Management System patientdetail.php sql injection |
| CVE-2026-13554 | 4.3 MEDIUM | itsourcecode Online Hotel Management System POST Request controller.php add cross site scr |
| CVE-2026-13556 | 4.3 MEDIUM | itsourcecode Online Hotel Management System POST Request controller.php edit cross site sc |
| CVE-2026-13557 | 4.3 MEDIUM | itsourcecode Online Hotel Management System POST Request controller.php add cross site scr |
No comments yet