Summary Vulnerability Type: Unrestricted Upload Severity: Critical Product: code-projects Simple Online Hotel Reservation System 2.0 Affected Component: Photo Handler Vulnerability ID: CVE-2025-12593 Details File Affected: /admin/edit_room.php Vulnerability Classification: CWE-434 Impact: - Confidentiality - Integrity - Availability Exploitability: - Easy to exploit - Can be launched remotely - Public exploit available Additional Information Mitigation Recommendation: Replace the affected object with an alternative product Attack Technique: T1608.002 Exploit Source: Sharing at github.com Detection Method: Google Hacking using the search term