CVE-2024-25316

Name of the Vulnerable Software and Affected Versions Code-projects Hotel Managment System version 1.0

Description The issue allows SQL Injection via the eid parameter in the "Hotel/admin/usersettingdel.php?eid=2" endpoint. This means an attacker could potentially inject malicious SQL code by manipulating the eid variable.

Recommendations For Code-projects Hotel Managment System version 1.0, as a temporary workaround, consider restricting access to the "Hotel/admin/usersettingdel.php" endpoint until a patch is available. Avoid using the eid parameter in this endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.