CVE-2025-12226

Name of the Vulnerable Software and Affected Versions SourceCodester Best House Rental Management System version 1.0

Description A flaw exists in the function save house within the file /admin class.php. Manipulation of the house no argument can lead to SQL injection. Remote exploitation is possible, and details about the exploit have been publicly disclosed.

Recommendations As a temporary workaround, consider restricting or validating the input to the house no parameter in the save house function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.