Security Advisory

CVE-2025-13123

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-13 19:02:06
Last updated 2025-11-13 19:36:38
Assigner VulDB
State PUBLISHED

Description

A flaw has been found in AMTT Hotel Broadband Operation System 1.0. The impacted element is an unknown function of the file /user/portal/get_firstdate.php. Executing manipulation of the argument uid can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.