SQL Injection Vulnerability in Hotel/admin/print.php?pid=2
CVE-2024-25318
8.8HIGH
What is CVE-2024-25318?
The vulnerability in Code-projects Hotel Management System version 1.0 presents an SQL Injection risk via the 'pid' parameter in the Hotel/admin/print.php endpoint. This flaw allows attackers to manipulate SQL queries, potentially compromising the database integrity and exposing sensitive information. Developers and administrators should implement input validation and sanitization measures to mitigate this threat.