CVE-2025-6451 – “Code-Projects Simple Online Hotel Reservation System SQL Injection”

June 22, 2025

CVE ID : CVE-2025-6451

Published : June 22, 2025, 2:15 a.m. | 11 hours, 28 minutes ago

Description : A vulnerability was found in code-projects Simple Online Hotel Reservation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/delete_pending.php. The manipulation of the argument transaction_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6452 – CodeAstro Patient Record Management System Cross-Site Scripting Vulnerability

Next Article CVE-2025-6450 – Simple Online Hotel Reservation System SQL Injection Vulnerability

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

Here’s how I fixed a dead Steam Deck screen — with Valve proving they still have the best customer service in gaming

Borderlands 4 drops stunning new story trailer

DistroWatch Weekly, Issue 1127

Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Understanding JavaScript Promise

Lakeflow: Revolutionizing SCD2 Pipelines with Change Data Capture (CDC)

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

Here’s how I fixed a dead Steam Deck screen — with Valve proving they still have the best customer service in gaming

Borderlands 4 drops stunning new story trailer

CVE-2025-6451 – “Code-Projects Simple Online Hotel Reservation System SQL Injection”

WordPress Motors theme flaw mass-exploited to hijack admin accounts

Weekly Cybersecurity News Recap – Top Vulnerabilities, Threat and Data Breaches

CVE-2025-4786 – SourceCodester Oretnom23 Stock Management System SQL Injection

Microsoft is revamping the reviled Windows 11 Start menu – here’s a sneak peek

GOG just saved one of the greatest JRPGs of all time — availablenowonPC

With KB5055627, Recall is finally one step closer to general availability in Windows 11

CVE-2025-47691 – Ultimate Member Code Injection

CVE-2025-3610 – Reales WP STPT Privilege Escalation and Account Takeover Vulnerability in WordPress

CVE-2025-42999 – SAP NetWeaver Remote Code Execution

Even the Meta Quest can be an Xbox — Leaked images show an Xbox-branded Quest 3S that could shadow drop in just a few days

CVE-2025-6451 – “Code-Projects Simple Online Hotel Reservation System SQL Injection”

Related Posts