CVE-2022-32055

Name of the Vulnerable Software and Affected Versions Inout Homestay version 2.2

Description The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the guests parameter at the "/index.php?page=search/rentals" API endpoint.

Recommendations For Inout Homestay version 2.2, consider restricting access to the "/index.php?page=search/rentals" endpoint until a patch is available. As a temporary workaround, avoid using the guests parameter in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.