code-projects Simple Online Hotel Reservation System add_account.php sql injection

5.1 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A security flaw has been discovered in code-projects Simple Online Hotel Reservation System 2.0. This affects an unknown function of the file /admin/add_account.php. The manipulation of the argument Name results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be exploited.

Basic Information

ID CVE-2025-12594

Source VulDB

Published Nov 2, 2025 at 08:32

Affected Product

Vendor code-projects

Product Simple Online Hotel Reservation System

Version 2.0

Affected Versions code-projects Simple Online Hotel Reservation System 2.0

CWE Classification

CWE-89 CWE-74

References

{
    "lastseen": "",
    "description": "A security flaw has been discovered in code-projects Simple Online Hotel Reservation System 2.0. This affects an unknown function of the file /admin/add_account.php. The manipulation of the argument Name results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be exploited.",
    "published": "2025-11-02T08:32:06.189Z",
    "modified": "2025-11-02T08:32:06.189Z",
    "type": "cve",
    "title": "code-projects Simple Online Hotel Reservation System add_account.php sql injection",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.330889\nhttps://vuldb.com/?ctiid.330889\nhttps://vuldb.com/?submit.677576\nhttps://github.com/asd1238525/cve/blob/main/SQL10.md\nhttps://code-projects.org/",
    "id": "CVE-2025-12594",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89",
        "CWE-74"
    ],
    "cvelist": null,
    "sourceData": "code-projects Simple Online Hotel Reservation System 2.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Simple Online Hotel Reservation System",
    "version": "2.0",
    "vendor": "code-projects",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

code-projects Simple Online Hotel Reservation System add_account.php sql injection_CVE-2025-12594