GCVE - cpe:2.3:a:janobe:resort_reservation_system:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:janobe:resort_reservation_system:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Janobe (`958e97e2-37fb-58eb-baa2-792f3e424acf`)
Product	Resort Reservation System (`9fd14fe1-6928-59c7-bef0-85a38705bdcd`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-3806`	vulnerable	2026-06-03 15:23:33.531052	SourceCodester/janobe Resort Reservation System room_rates.php sql injection MEDIUM (6.3) A weakness has been identified in SourceCodester/janobe Resort Reservation System 1.0. This issue affects some unknown processing of the file /room_rates.php. This manipulation of the argument q causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks. Published: 2026-03-09T06:02:07.435Z Updated: 2026-03-10T15:47:41.474Z Open on db.gcve.eu Reference links https://vuldb.com/?id.349772 https://vuldb.com/?ctiid.349772 https://vuldb.com/?submit.768999 https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/Resort-Reservation-System---SQLi2.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-3800`	vulnerable	2026-06-03 15:23:33.527886	SourceCodester/janobe Resort Reservation System controller.php doInsert unrestricted upload MEDIUM (6.3) A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. Affected is the function doInsert of the file /controller.php?action=add. Such manipulation of the argument image leads to unrestricted upload. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. Published: 2026-03-09T03:32:12.090Z Updated: 2026-03-10T16:01:10.265Z Open on db.gcve.eu Reference links https://vuldb.com/?id.349767 https://vuldb.com/?ctiid.349767 https://vuldb.com/?submit.768978 https://vuldb.com/?submit.768998 https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/Resort-Reservation-System---Unrestricted-Upload.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-3771`	vulnerable	2026-06-03 15:23:33.468553	SourceCodester/janobe Resort Reservation System accomodation.php sql injection MEDIUM (6.3) A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. This vulnerability affects unknown code of the file /accomodation.php. Such manipulation of the argument q leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. Published: 2026-03-08T21:32:09.409Z Updated: 2026-03-10T20:38:26.221Z Open on db.gcve.eu Reference links https://vuldb.com/?id.349749 https://vuldb.com/?ctiid.349749 https://vuldb.com/?submit.768925 https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/Resort-Reservation-System---SQLi.md	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.