A flaw has been found in itsourcecode Free Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /hotel/admin/mod_reports/index.php.…

A SQL injection vulnerability has been discovered in itsourcecode Free Hotel Reservation System 1.0. The flaw affects the /hotel/admin/mod_reports/index.php file through manipulation of the Home argument. The vulnerability can be exploited remotely and a public exploit has been published. This allows attackers to potentially access, modify, or extract sensitive database information from the hotel management system. The vulnerability poses a high risk due to its remote exploitability and availability of public exploit code.