Liuzhouyang2

**Name of the Vulnerable Software and Affected Versions** SourceCodester Hotel and Lodge Management System version 1.0 **Description** A flaw exists in SourceCodester Hotel and Lodge Management System 1.0, specifically within the `/edit curr.php` file. Manipulation of the `currsymbol` argument can lead to a SQL injection. This issue is remotely exploitable, and details about the exploit are publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Hotel and Lodge Management System version 1.0 **Description** A flaw exists in SourceCodester Hotel and Lodge Management System 1.0, specifically within the /edit booking.php file. Manipulation of the `Name` argument can lead to a SQL injection. This issue is remotely exploitable and details about the exploit are publicly available. **Recommendations** Apply a fix to sanitize the `Name` argument in the /edit booking.php file to prevent SQL injection.