Liuzhouyang1

**Name of the Vulnerable Software and Affected Versions** SourceCodester Hotel and Lodge Management System version 1.0 **Description** A flaw exists in SourceCodester Hotel and Lodge Management System 1.0. Manipulation of the `Contact` argument in an unknown function within the /pages/save customer.php file can result in SQL injection. This issue can be exploited remotely. The exploit has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Hotel and Lodge Management System version 1.0 **Description** A security issue exists in SourceCodester Hotel and Lodge Management System version 1.0. The issue allows for unrestricted file upload through manipulation of the `website image/back login image` argument in the `/manage website.php` file. This is possible remotely. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Hotel and Lodge Management System version 1.0 **Description** A flaw exists in SourceCodester Hotel and Lodge Management System 1.0 that allows for SQL injection. The issue is located in the file `/edit customer.php` and involves the `ID` argument. This manipulation can be performed remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Hotel and Lodge Management System version 1.0 **Description** A flaw exists in SourceCodester Hotel and Lodge Management System 1.0. The issue involves the manipulation of the `ID` argument in the `/edit room.php` file, leading to a SQL injection. This allows for remote exploitation. The exploit has been published. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.