Amtt · Amtt Hotel Broadband Operation System · CVE-2025-14090
**Name of the Vulnerable Software and Affected Versions**
AMTT Hotel Broadband Operation System version 1.0
**Description**
A security flaw exists in AMTT Hotel Broadband Operation System 1.0. The issue is related to SQL injection within the file `/manager/card/cardmake down.php`. Manipulation of the `ID` argument can trigger the injection. The attack can be initiated remotely. The exploit has been publicly released. The vendor was notified but did not respond.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.