CVE-2025-7800 – “CGPandey Hotelmis HTTP GET Request Handler Cross-Site Scripting Vulnerability”

July 18, 2025

CVE ID : CVE-2025-7800

Published : July 18, 2025, 7:15 p.m. | 3 hours, 31 minutes ago

Description : A vulnerability classified as problematic was found in cgpandey hotelmis up to c572198e6c4780fccc63b1d3e8f3f72f825fc94e. This vulnerability affects unknown code of the file admin.php of the component HTTP GET Request Handler. The manipulation of the argument Search leads to cross site scripting. The attack can be initiated remotely. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-54309 – CrushFTP Remote Admin Access Vulnerability

Next Article CVE-2025-7798 – Beijing Shenzhou Shihan Technology Multimedia Integrated Business Display System SQL Injection Vulnerability

In-House vs. Outsource Node.js Development Teams: 9 Key Differences for the C-Suite (2025)

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

DistroWatch Weekly, Issue 1131

I ditched my Bluetooth speakers for this slick turntable – and it’s more practical than I thought

This split keyboard offers deep customization – if you’re willing to go all in

I spoke with an AI version of myself, thanks to Hume’s free tool – how to try it

The details of TC39’s last meeting

The details of TC39’s last meeting

Simple wrapper for Chrome’s built-in local LLM (Gemini Nano)

Online Examination System using PHP and MySQL

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

WhatsApp for Windows 11 is switching back to Chromium web wrapper from UWP/native

DistroWatch Weekly, Issue 1131

CVE-2025-7800 – “CGPandey Hotelmis HTTP GET Request Handler Cross-Site Scripting Vulnerability”

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

CVE-2025-22237 – SaltStack Minion Remote Command Execution Vulnerability

7 Top Starter & Barebone Themes for WordPress Development

GitHub for Beginners: Building a REST API with Copilot

CVE-2025-20960 – CocktailBarService Privilege Escalation Vulnerability

Microsoft reveals upcoming changes to Microsoft 365 Developer Program

Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA

CVE-2025-49442 – Mostafa Shahiri Simple Nested Menu Cross-Site Scripting

CVE-2025-7800 – “CGPandey Hotelmis HTTP GET Request Handler Cross-Site Scripting Vulnerability”

Related Posts