Security Advisory

CVE-2021-41651

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-04 18:01:24
Last updated 2024-08-04 03:15:29
Assigner mitre
State PUBLISHED

Description

A blind SQL injection vulnerability exists in the Raymart DG / Ahmed Helal Hotel-mgmt-system. A malicious attacker can retrieve sensitive database information and interact with the database using the vulnerable cid parameter in process_update_profile.php.