Sourcecodester · Best House Rental Management System · CVE-2025-12226
**Name of the Vulnerable Software and Affected Versions**
SourceCodester Best House Rental Management System version 1.0
**Description**
A flaw exists in the function `save house` within the file `/admin class.php`. Manipulation of the `house no` argument can lead to SQL injection. Remote exploitation is possible, and details about the exploit have been publicly disclosed.
**Recommendations**
As a temporary workaround, consider restricting or validating the input to the `house no` parameter in the `save house` function.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.